Data Management

Question 1

What are the benefits of cloud based storage systems?

Answer 1

Information is backed up securely on encrypted servers

Accessibility can be managed via online settings

Cloud systems are often cheaper than the costs of physically storing and managing files

It is convenient to send and share files online instead of mailing physical copies

Cloud systems are environmentally friendly

Multiple users can access the same documents

Documents and folder systems can be synchronised

Question 2

What is the meaning of a non disclosure agreement?

Answer 2

Non disclosure agreements are used to protect against the disclosure or sharing of any confidential data.

Prior to the confidential data being share with a recipient, clients will typically request that the recipient signs up to an NDA.

They are often used when confidential, sensitive, innovative or intellectual property information is being shared to prevent this information being used by competitors.

Question 3

If two separate departments within your firm were working for two rival companies how would you ensure client sensitive data was managed?

Answer 3

Make client aware of risks
Conflict of interest
Letter of instruction to continue
Exclusivity of staff
NDAs
Single Communication Lines in to client
Separate working locations
Secure storage

Question 4

Who are the key persons outlined within GDPR?

Answer 4

Controller
The controller is the natural person or legal entity that determines the purposes and means of the processing of personal data (e.g., when processing an employee’s personal data, the employer is considered to be the controller).
Processor
A natural person or legal entity that processes personal data on behalf of the controller (e.g., a call centres acting on behalf of its client) is considered to be a processor. At times, a processor is also called athird party.
Data Protection Officer (DPO)
The Data Protection Officer is a leadership role required by EU GDPR. This role exists within companies that process the personal data of EU citizens. A DPO is responsible for overseeing the data protection approach, strategy, and its implementation.

Question 5

What are the 8 individual rights under GDPR?

Answer 5

The right to be informed
The right of access
The right of rectification
The right to erasure
The right to restrict processing
The right to data portability
The right to object
Rights of automated decision making and profiling

Question 6

What does it mean to be GDPR compliant?

Answer 6

GDPR is a regulation that requires businesses to protect the personal data and privacy of EU citizens for transactions that occur within EU member states. And non-compliance could cost companies dearly.

Question 7

What are the 7 principles of GDPR?

Answer 7

Lawfulness, fairness and transparency.
Purpose limitation.
Data minimisation.
Accuracy.
Storage limitation.
Integrity and confidentiality (security)
Accountability.

Question 8

What things must companies put in place to ensure GDPR compliance?

Answer 8

Raise awareness across your business
Audit all personal data
Update your privacy notice
Review your procedures supporting individuals’ rights
Identify and document your legal basis for processing personal data under the GDPR
Review how you seek, obtain and record consent