Data Management

Question 1

What is the Data Protection Act 2018?

Answer 1

• UK’s implementation of the General Data Protection Regulation 2016 (GDPR)
• Complete data protect system – as well as governing personal data covered by GDPR, it covers all other general data as previously covered by the 1998 Act

Question 2

What is GDPR?

Answer 2

• General data protection regulation
• Relates to personal data
• Aims to create a single data protection regime for anyone doing business in the EU and to empower individuals to take control of how their data is used by third parties
• Gives people stronger rights to be informed about how their personal information is used

Question 3

When did GDPR come into force?

Answer 3

May 2018

Question 4

What are the key requirements under GDPR?

Answer 4

• Obligation to conduct data protection impact assessments for high risk holding of data
• New rights for individuals to have access to information on what personal data is held and to have it erased
• A data controller decides how and why personal data is processed and is directly responsible for GDPR
• ‘Data accountability’ ensuring that organisations can prove to the Information Commissioners Office (ICO) how they comply with the new regulations

Question 5

What does Article 5(1) of GDPR state in relation to the processing of data?

Answer 5

Data must be processed lawfully, fairly and in a transparent manner in relation to individuals

Question 6

What does Article 5(1) of GDPR state in relation to the collection of data?

Answer 6

Data must be collected or specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes

Question 7

What does Article 5(1) of GDPR state in relation to the relevance of data?

Answer 7

Data must be adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed

Question 8

What does Article 5(1) of GDPR state in relation to the accuracy of data?

Answer 8

Data must be accurate and, where necessary kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purpose for which they are processed, are erased or rectified without delay

Question 9

What does Article 5(1) of GDPR state in relation to the form which data is kept in?

Answer 9

Data must be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed

Question 10

What does Article 5(1) of GDPR state in relation to the the processing of data?

Answer 10

Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisation measures

Question 11

Who does Article 5(2) of GDPR state is responsible for the compliance with the principles outlined in Article 5(1)?

Answer 11

The data controller shall be responsible for, and be able to demonstrate compliance with the principles

Question 12

What are the 8 individual Rights under GDPR?
AIRER POA

Answer 12

1. Right of access
2. Right to be informed
3. Right to rectification
4. Right to erasure
5. Right to restrict processing
6. Right to data portability (to use for their own purposes)
7. Right to object
8. Rights to automated decision making and profiling (as undertaken by insurance companies

Question 13

What do you understand by the term security of data?

Answer 13

Means ensuring that data is kept safe from corruption and that access to it is suitably controlled to ensure privacy and protection

Question 14

How can security of data be improved?

Answer 14

• Disk encryption - encrypting data on a secure hard disk drive
• Regular back ups off site
• Password protection
• Use of anti-virus software protection
• Firewalls and disaster recovery procedures

Question 15

What does Crown Copyright cover?

Answer 15

All materials created and prepared by the Government, such as laws, public records, official press releases and OS mapping

Question 16

What is a deed?

Answer 16

A legal document made under seal

Question 17

How can you prove ownership of land which is not registered with the Land Registry?

Answer 17

The Deeds will set out information about the ownership and details of a property

Question 18

What do the Land Registry provide upon request and payment?

Answer 18

Copy of the official Title Register for registered property or land in the UK

Question 19

How do the MSCI produce their Real Estate indices?

Answer 19

Draw on up-to-date valuations of selected UK properties

Question 20

What are the RICS Data Standards, 2018?

Answer 20

• Set of standards to support the capture, verification and sharing of data in a common format
• They address issues of digital data consistency

Question 21

What data are the RICS Data Standards, 2018 already available for?

Answer 21

• International Property Measurement Standards (IPMS)

* International Construction Measurement Standards (ICMS)

Question 22

What additional data are the RICS Data Standards, 2018 going to be made available for?

Answer 22

• International Valuation Standards (IVS)

* International Land Measurement Standard (ILMS)

Question 23

What does the colour coding on Title Plans represent?

Answer 23

• Red Line – boundary of registered land
• Green Line – boundary of land removed from title
• Green Shading – land excluded from the title but within area
• Blue shading – right of way on registered land for use by other land
• Orange shading – right of way on other land for use by registered land

Question 24

What is included in a Land Registry title register?

Answer 24

• A: Property register - description of the property, tenure, the date the property was first registered and any rights it may benefit from e.g. private right of way
• B: Proprietorship register - name and address of the current owner, when they bought the property, how much was paid for it (if sold since 1 April 2000), any restrictions that limit the power of the owner and the class of the title
• C: Charges register - mortgages and other financial burdens received on the property. Other rights or interest that limit how the land or property can be used e.g. leases, rights of way or covenants

Question 25

What is “personal data” as defined by GDPR?

Answer 25

Personal data are any information which are related to an identified or identifiable natural person e.g. the telephone number, email address

Question 26

Who does GDPR apply to?

Answer 26

Affects any company that trades with the EU, regardless of their location

Question 27

Who is GDPR governed by?

Answer 27

Information Commissioners Office

Question 28

GDPR Penalties?

Answer 28

4% global turnover of company
or €20mill whichever is higher

Question 29

What is the UK Data Legislation?

Answer 29

Data Protection Act 2018

Question 30

What is the right to be forgotten?

Answer 30

• The data that people/firms have on someone can be asked to be erased under the GDPR act.
• There is one month to respond to the request.

Question 31

What is the Freedom of Information Act and what year?

Answer 31

2000
Provides public access to information held by public authorities.
- public authorities are obliged to publish certain information about their activities;
and
- members of the public are entitled to request information from public authorities.

Question 32

What are the 8 key principles within the Data Protection Act.

Answer 32

1. Data must be collected and used fairly within the Law.
2. Data can only be used the way it is registered with the Information Commissioner.
3. The information held must be adequate for its purpose.
4. The information must be up-to-date.
5. Data must not be stored longer than needed.
6. Data must be used in line with the rights set out in the Data Protection Act.
7. The information must be safe and stored away from unauthorised access.
8. Data must not be transferred outside the European Economic Area unless the country has its own safe data protection law.

Question 33

What is ISO 14001?

Answer 33

ISO 14001 sets out the criteria for an environmental management system.

It maps out a framework that a company or organization can follow to set up an effective environmental management system.

Question 34

What is ISO9001

Answer 34

SO 9001 sets out the criteria for a quality management system.

This standard is based on a number of quality management principles including a strong customer focus, the motivation and implication of top management, the process approach and continual improvement.

Question 35

What are SARs?
What is a SAR?

Answer 35

Subject Activity Request
A person asking a Company what information is held on them