Data Management Flashcards
What is the fine for breaching data protection/GDPR?
the greater of 4% of global turnover or 17.5 million
Some of the GDPR individual rights:
The right to be informed
The right to object
The right to erasure
The right to rectify
The right of access
To restrict processing
Tell me about GDPR 2016 and the Data Protection Act 2018
Aims to create a single data protection regime affecting business and to empower individuals to take control of how their data is used by third parties
Can you tell me some principles of the UK GDPR relating to the storage of personal data
Article 5 states data must be processed lawfully, fairly and in a transparent manner
What are the protocols if data has been breached?
You must inform the client and the person the data has been sent to immediately. E.g if I had sent an email containing confidential info to the wrong person, I would contact them immediately to ask them to delete the email without reading it. I would also let the client know to ensure I had been honest and transparent.
How do you store your data safely
At Savills we have individual folders that only the relevant team can access. If data is extremely confidential then they are password protected.
What are data security technologies?
- Disk encryption
-Regular backups off site
-Password protection
-Anti-virus software
-Firewalls
How to prevent data breaches?
-Update password regularly
-Don’t leave notes out on desk/in car
-Lock computers
RICS Guidance on Data Management?
Not currently, but there is a proposed Professional Statement on Data Handling and Prevention of Cybercrime
What is a data processor and regulator?
Processor = usually a 3rd party external to firm. Processes data on behalf of a controller
Regulator = Regulates the purpose and manner in which data is processed
