Data Management Flashcards
Sources of information and data?
Internal cost data (Benchmark+), external e.g., BCIS
Methodologies and techniques to collect, collate and store data?
Collect – tender process, questionnaires. Store - Secure password protected and two stage authentication systems.
- What are some of the rules about handling client’s data?
- Abide by UK GDRP and Data Protection Act 2018
- Respect and maintain confidentiality, keep records of consent to store data
- Identify any conflicts in handling or seeing the data
- Review contractual clauses in appointment docs/terms of engagement
- Refer to my firms guidance
What is UK GDPR?
- General Data Protection Regulations – EU regulation brought into UK as UK GDPR by the Data Protection Act 2018
- Standardises data protection, sets out fundamentals for data protection principals relating to how data is collected, processed, stored and used
- UKGDPR sets our principles for how data should be processed
What are the 7 principles?
- Lawfulness, fairness and transparency
- Purpose limitation
- Data minmisation
- Accuracy
- Storage limitation
- Integrity and confidentiality
- Accountability
What punishments are there for failing to comply with UK GDPR?
Fines of up to £17.5m or 4% of your total worldwide annual turnover, whichever is higher.
What is the Data Protection Act 2018?
Legislation that controls how your personal information is used by organisations, businesses or the government
What personal rights are afforded under the Data Protection Act?
- The right to find out what information the government and other organisations store about you. These include the right to:
- be informed about how your data is being used
- access personal data
- have incorrect data updated
- have data erased
- stop or restrict the processing of your data
What is the Freedom of Information Act 2000?
Gives the public a general right of access to information held by public authorities or by persons providing services for them.
How do you/your firm ensure client data is safe?
- Encryped laptops
- Two-stage authentication to access systems
- Sending files with personal data through password protected file transfer systems not email
- Files assigned level of confidentiality – which assigns access restrictions and storage procedures
- Regular compliance training
- Regular review and update of client data when undertaking new projects
What is BIM?
- Building Information Modelling
- BIM is a process for creating and managing information on a construction project throughout its whole life cycle. This may include digital models but is not solely limited to digital information.
- RICS publish guidance note: BIM for Cost Managers
What are the levels of BIM?
Level 0-3
What is the UK BIM Framework?
- The UK BIM Framework sets out the approach for implementing BIM in the UK using the framework for managing information provided by the ISO 19650 series.
- Replaces the traditional level 2 requirement for BIM.
What is BCIS?
- Building Cost Information Service – RICS founded platform providing cost and price data for the construction industry
- Focuses on providing comprehensive and accurate independent data
What is the BCIS used for?
Used as a source of cost data for preparation of cost plans and estimates, and to benchmark cost and prices
What benchmarking tools does BCIS have?
Provides different inflation indices for construction including:
* BCIS Tender Price Indices - measures the movement in prices at tender stage
* BCIS Output Price Indices - measures average price of projects currently on site
How does your company store historical cost data?
- Dedicated cost intelligence team
- Captured in the same format as BCIS
- Collation of inhouse inflation indices
- Collated in centralised repository based on sector and type of work
- Insight system to capture cost plans, cost estimates, tender prices
- Protected cloud based system
How long can you keep personal data for and is there legislation covering this?
- UK GDPR storage limitation - but does not set specific time limits
- Will depend on how long you need the data for your specified purposes
- But cannot keep for longer than is necessary for the purposes for which the personal data are processed
What is your businesses classification of documents?
- Public - Information that can be made available in the public domain
- Baseline - information that does not contain sensitive business or personal data e.g., general personal data, governance documents
- Sensitive - information that if lost, exposed, or corrupted, could result in reputational loss, financial loss, or provide competitive advantage to competitors e.g., framework rates
- Confidential - as above and loss of such information could result in
- fines and prosecution e.g., sensitive personal info, intellectual property, passwords that could lead to access of information
- Client Confidential - Where a client requires use of their own classification scheme (e.g., a national government, or a nuclear regulator), documents should be considered as AtkinsRéalis Client Confidential.
What forms of data do you regularly use, and how is it used to help your business?
Internal cost data (Benchmark+), external e.g., BCIS. Informs rates, used to benchmark.
ISO9001?
We QA check documents before they are issued, store project info in project specific folders.
What do you do if two parts of your business are working for a client and contractor on same project/Conflict of interest of data?
Information barrier, separate file structure
Difference between data protection act and uk gdpr
Uk GDPR sits alongside the data protection act and should be read in conjunction with the act
