Data Management Flashcards
- Can you name the recently introduced regulations set out to control how companies manage data they hold?
General Data Protection Regulations (Data Protection Act 2018 is UK’s implementation of it)
Can you name the legislation this is supported by?
Data protection Act 2018
What are the seven principles set out in the GDPR? You do not need to name all, just 3 or 4.
“Make sure that information is:
- used fairly, lawfully and transparently
- used for specified, explicit purposes
- accurate and, where necessary, kept up to date
- kept for no longer than is necessary”
What is the “Golden Thread”?
The golden thread is both: the information about a building that allows someone to understand a building and keep it safe, and. the information management to ensure the information is accurate, easily understandable, can be accessed by those who need it and is up to date.
Explain the role of duty holder and acountable person?
The duties will be placed on those who commission building work, participate in the design and construction process and those who are responsible for managing structural and fire safety in the building when it is occupied.
These people will be called dutyholders during design, construction phase. When a building is occupied, the Accountable Person will be responsibly for coordinating the golden thread of safety information and keeping the golden thread updated and ensuring it is accurate and accessible. If there are multiple Accountable Persons then the Principal Accountable Person will take lead responsibility for the golden thread. When a building is being refurbished this may involve both dutyholders, the Principal Accountable Person and Accountable Persons, as many buildings will remain occupied during refurbishment.
What is the Data Protection Act 2018 and what is its purpose?
- The UK’s implementation of the General Data Protection Regulation (GDPR)
- Controls how personal information is used by organisations, businesses or the Government.
Can you name any of the eight principles related to the protection, processing, and movement of data in the Data Protection act 2018?
1 – Fair and Lawful
2 – Purposes
3 – Adequacy
4 – Accuracy
5 – Retention
6 – Rights
7 – Security
8 – International transfers
Key duty holders in GDPR & key obligations.
The information commissioner
Data controllor (within a firm) is reponsible for GDPR
Firms must undertake data impact assesments on high risk data holding.
data breaches refered to ICO within 72 hours
Fines can be 4% of global turnover or 20m euros whatever is higher.
What are the 6 Key Principles of GDPR?
Information used lawfully, fairly and transparently
◼ Collected for specified, explicit and legitimate purposes
◼ Adequate, relevant and limited to necessity
◼ Accurate (kept up to date)
◼ Kept no longer than necessary
◼ Kept safe
Individual Rights of GDPR and DPA (8 Key Points)
◼ To be informed
◼ To access
◼ To rectification
◼ To erasure
◼ To restrict processing
◼ To data portability
◼ To object
◼ To automated decision making & profiling
GDPR and DPA Penalties
Fines (4% of annual global turnover or 20 million euros)
What are the 7 principles of GDPR?
- Lawfulness, fairness and transparency.
- Purpose limitation.
- Data minimisation.
- Accuracy.
- Storage limitation.
- Integrity and confidentiality (security)
- Accountability.
What are the Key principles of GDPR?
- Lawful fair and transparent
- Purpose limitation
- Data minimisation
- Accuracy
- Storage limitation
- Integrity and confidentiality
- Accountability
Why is Data Management important in
the your area of practice?
Financial management
Forecasting
CRM
Statistical Analysis
Report Writing
Tendering Success
Fee pricing
Organisational Management
Legal implications
Planning
CPD
Research
Where do you get information or data from in your area of practice?
How do you use that data?
GDPR
Price books
Tenders
Property sales records
Companies House
Land registry
Electoral Register
Government departments
Membership records
Internet
CRM (ACT)
Data collection companies
