Data Management Flashcards
What are the principles of GDPR?
Personal Data Must be:
-processed lawfully, transparently
-collected for legitimate purposes
-adequate and limited to necessary data
-accurate
-only kept for as long as is necessary
-secure
How would you keep track of timings for rent collection, break clauses?
Diary inputs with reminders
How should you verify data, what is it called?
Check/verify against an alternative source
Triangulation
Can you provide examples of data security technologies?
Disk encryption- secured hard drive
Regular back ups off site
Password protection
Anti virus software protection
Firewalls
what is copyright ?
A set of exclusive rights granted to the creator of original work including the right to copy
How do you overcome copyright?
Acknowledge the copyright for info duplicated in your work
What’s the link between gdpr and the dara protection act 2018?
UK gdpr is supplemented by the data protection act 2018
What are the aims of the data protection act?
Empower individuals to take control of how their data is used by third parties
Gives people rights to he informed about how their information is used
What are the requirements under UK gdpr? 7
Conduct data protection impact assessments for high risk holding of data
individuals to have access to information on what personal data is held and to have it erased
A data controller
Data accountability to the information commissioner’s office
Data breaches need to be reported to the ICO within 72 hours
Fines up to 4% of turnover or £17.5m
Policed by ICO
What are the 8 rights under GDPR?
Processed lawfully
Collected for legitimate purposes
Adequate and relevant, necessary
Accurate and kept up to date
Only kept for time that is necessary
Ensure security of data
Which act gives people rights of access to information held by public bodies?
Freedom of information act 2000
How does a non disclosure agreement work?
Either one or both parties agree to not share information. Typically you would sign a letter of agreement with clauses in
What is the proposed professional statement re data? What is it proposed to address?
Data handling and prevention of cybercrime
Address how surveyors capture store and share data appropriately and securely and mandate training for members and firms
What are the 3 exemptions for GDPR ?
Domestic purposes
Law enforcement
Intelligence services processing
What are the fines for data breaches
4% of turnover or £17.5m, whichever is greater