Data Management Flashcards
Why are diaries important for data management systems?
To remind you of trigger dates for lease events such as rent reviews, insurance renewals, inspections, break clauses.
What are some examples of different data sources you work with?
- Property schedules from clients.
- Comparable evidence from online portals.
- Due diligence info - planning portal, land registry, EPC register etc.
What are some data security technologies?
- Disk encryption (secure hard-drive)
- Password protection
- VPNs
- Anti-virus software
- Firewalls
- 2FA
What are your company’s policies on data security?
- Clear desk policy
- Lock PC when away from desk
- Use VPN outside of office
- Don’t download client files to hard-drive
- Phishing email training
- Secure disposal of paperwork
What is ‘copyright’?
Exclusive intellectual property rights granted to the author/creator of any original work, including the right to copy.
They can be licensed, assigned or transferred.
What is ‘Crown Copyright’?
All material created by the Government, such as laws, public records, press releases and OS maps.
What must you do for any copyright duplicated in your work?
Acknowledge it
What are the relevant data protection laws?
UK General Data Protection Regulation 2016
Data Protection Act 2018
Describe the relevant data protection laws?
Following Brexit, the UK created the UK GDPR 2016 and Data Protection Act 2018.
Single regime for businesses regarding individuals’ control over how their data is used by 3rd parties.
Key requirements of UK GDPR and Data Protection Act?
- Impact assessments for high-risk data
- Individuals’ rights to access
- Data controller - how/why data is processed and GDPR compliance
- Data breaches reported to Information Commissioner’s Office within 72 hours
Who polices the UK regulations?
Information Commissioner’s Office (ICO)
What are the penalties for breaches of the GDPR / Data Protection Act?
Fines - greater of 4% annual turnover or £17.5m
Which article of UK GDPR relates to the storage of personal data?
Article 5(1)
What is Article 5(1) and what does it prescribe?
Personal data rights:
PACKS
Processed lawfully & transparently (PLT)
Accurate and up to date
Collected for legitimate purposes
Kept in a form permitting identification for no longer than necessary
Security of data
What does Article 5(2) of UK GDPR require?
Data controller - responsible for compliance
What are the individual rights under UK GDPR?
A - Access
C – Consent
C - Correction
E – Erasure
P – Portability
ACCEP
(Accep your rights)
Any other relevant legislation?
Freedom of Information Act 2000
What is the Freedom of Information Act 2000?
Law giving individuals’ the right of access to public information.
The public body must say whether it holds the information and provide within 20 days with a right to charge for it.
Exemptions to FOI Act 2000?
- Contrary to GDPR
- Would prejudice criminal matter under investigation or commercial interest