Data Management

Question 1

Understanding of term Confidentiality?

Answer 1

Information subject to confidence and not shared without permission

Question 2

Understanding of term Meta Data and why important?

Answer 2

Information about a specific piece of data eg Cost Plan document - info on the author, file size, date created, keywords
Afford same level of care as confidential - issuing redacted document, protect meta data

Question 3

Understanding of Intellectual Property and Copyright?

Answer 3

Control ownership of original works
belongs to employer unless copyrighted
client granted licence for use
eg particular design

Question 4

What is the Freedom of Information Act 2005?

Answer 4

Controls access to official information
public right of access
also publish through public authorities publication scheme
not just information since act came into effect

Question 5

Benefits of cloud-based storage systems?

Answer 5

Backup
encrypted
accessibility managed
cheaper
convenient
environmentally friendly
multiple users
synchronization

Question 6

Meaning of Non-Disclosure Agreement?

Answer 6

Prior to sharing:
requests NDA to protect:
confidential
sensitive
innovative
intellectual property
competitors

Question 7

Two departments working for two rivals? (data protection!)

Answer 7

Client be aware
CoI
Instruction
Exclusivity
NDA
Separate locations
Secure storage and separate

Question 8

Data Protection Act 2018?

Answer 8

Replaces 1998 legislation and manages personal data processing within organisations and government
Implementation of the EU General Data Protection Regulations (GDPR)

Question 9

Key principles of the Act?

Answer 9

Used:
fairly
lawfully
transparently
only the purpose it is intended
kept no longer than necessary
secure and protected from unlawful use
loss
destruction

Question 10

Person’s rights under the Act?

Answer 10

InAcUpErStPoOb

Question 11

Key persons within GDPR?

Answer 11

Controller - natural entity that determines purpose eg employer
Processor - natural entity that processes for the controller eg call centre for employer
Data Protection Officer (DPO) - overseeing the approach, strategy, implementation

Question 12

The 8 individual rights under GDPR?

Answer 12

As the Act acronym above, plus:
automated decision making
profiling; D,I,teamworking

Question 13

How you manage to ensure compliance?

Answer 13

NDA - not divulge
Encrypted servers
Cyber security
Client permission for sharing

Question 14

How companies ensure compliance generally?

Answer 14

Only keep what needed
keep person informed and why using
keep secure
keep info up to date