Data Management

Question 1

What is your understanding of the term confidentiality?

Answer 1

Securely storing information given, which is only shared with express permission from its owner.

Question 2

What is your understanding of the term metadata and why is it important ?

Answer 2

• Meta data is the information attached to files such as the author
• This must be carefully managed the same of other confidential data

Question 3

What is your understanding of intellectual property and copyright?

Answer 3

• Original works or copywritten works are the property of the creator or their employer, for another party to use them without permission could result in civil action being taken.

Question 4

what is the freedom of information act 2005

Answer 4

• Anyone has the right to request information from public bodies, provided it is not confidential.

Question 5

What are the benefits of cloud-based storage?

Answer 5

• It can offer unlimited storage capacity which can be access from any location and is backed up
• there are security concerns, however, as data storage could be hacked.

Question 6

What is the meaning of a non-disclosure agreement?

Answer 6

This is a signed contract that prevents a party from sharing details outside of the contractual parties. For example, a commercially sensitive project where a leak of information could damage the business.

Question 7

If two separate departments within your firm were working for two rival companies, how would you ensure sensitive data was managed?

Answer 7

• Both clients would need to be aware and agree to proceed with the appointments
• there should be no cross over of staff between the two projects
  -a NDA could be used
• the two teams could work from separate locations
• the use of secure document and data storage with additional measures to prevent access from people outside of the team.

Question 8

What is the data protection act 2018?

Answer 8

It is the UK legislation that implements the EU general data protection regulations.

Question 9

What are the key principles of the Data Protection Act

Answer 9

The act aims to ensure that data is:
- used fairly, and transparently
- limited to the purpose it was intended
- is retained no longer than necessary
- processed and stored securely

Question 10

What are a person’s rights under the Data Protection Act?

Answer 10

You have the right to:
- be informed about how your data is used
- be able to access your data
- to have incorrect information updated
- to have your data erased
-to limit or stop the processing of your data
- to object to the use of their data

Question 11

Who are the key persons outlined within GDPR?

Answer 11

The data controller, the processor and the data protection officer.

The controller is the person or entity that sets the requirements for the data to be collected.

The processor is the one that handles the data.

and the data protection officer is required when companies process person data for EU citizens

Question 12

What are the eight rights under GDPR?

Answer 12

• the right to be informed
  -the right of access
• the right of rectification
• the right to erasure
• the right to restrict processing
• the right to data portability
  -the right to object
• Rights of automated decision making and profiling
• Diversity inclusion and team working

Question 13

What different sources of information do you use in your day-to-day role?

Answer 13

• Technical documents such as manufacturer product data
• RICS professional standard or practice information
• legal documents such as contracts and leases
• Drawings and specifications

Question 14

How do you manage storage of sources of information to ensure compliance with legislation?

Answer 14

• hard copies of data with personal details on it are kept in a secure document store
• digital data is securely stored on my workplaces secure servers
• I comply with my work IT policies; my laptop is always locked when I am away from my desk, and I make sure I report any emails which seem suspicious without opening any links they contain.
  _ only share my clients data with their permission

Question 15

How do companies ensure compliance with the data protection legislation?

Answer 15

-Only data required to carry out day to day operations should be retained
- They should inform any person they are retaining the information of
-They should hold data securely
- The data should be kept up to date and deleted once no longer needed.
-

Question 16

What is GDPR?

Answer 16

the EU’s general data protection regulation that protects EU citizens rights and freedoms around personal data.

Question 17

What uk legislation implement GDPR?

Answer 17

the data protection act 2018

Question 18

What is a identifiable living indiviual?

Answer 18

a living person that can be identified directly or indirectly from an indentifier such as a persons name/ location data or one or more factors spesific to the physical, pyshiological, gentic, economic or social identity

Question 19

What is personal data?

Answer 19

Any data/ infomation that relates to a indentifed or identifiable person

Question 20

What is a data subject?

Answer 20

The person who the personal data pertains to

Question 21

what is data processing?

Answer 21

an operation or set of operations peromed on infomation or sets of imfomation to colection, organsing, adatping, altering, retriving, recording, structre, storeing, use of

Question 22

What is a data controller under GDPR?

Answer 22

The controller is the person or entity that sets the requirements for the data to be collected.

Question 23

What is a data processor under GDPR?

Answer 23

The person who possesses the legal data on behalf of the data controller

Question 24

What is a electronic database?

Answer 24

a computre based collection or listing of infomation

Question 25

What is iso 27001?

Answer 25

the international infomation security standard for how companies should implement a infomation security system.