Data Management Flashcards
What is The DPA 2018 ?
It gives people the right to know how their data is being used.
Why is data management important ?
Data management is important for ensuring accuracy, compliance, confidentiality, and trust, supporting efficient operations and protecting client information.
How is data stored ?
- Cloud storage
- disk encryption
- regular backups off site
- password protection and use of anti virus storage
How is data protected
Encryption: Converting data into a secure format that can only be read by authorized users with the decryption key.
Access Controls: Implementing permissions and authentication methods (e.g., passwords, biometrics) to restrict data access to authorized personnel only.
Firewalls: Using firewalls to create a barrier between trusted internal networks and untrusted external networks, blocking unauthorized access.
Data Backup: Regularly backing up data to secure locations to prevent loss from accidental deletion, hardware failure, or cyberattacks.
Antivirus Software: Deploying antivirus and anti-malware software to detect and mitigate threats from malicious software.
How can I comply with mailing lists in accordance with UK GDPR
Surveyors must have a valid reason for including individuals on mailing lists, typically through consent (e.g., individuals have opted in to receive communications) or legitimate interest (such as sending relevant property updates to clients).
Surveyors provide a privacy notice explaining how personal data will be used, including who will receive communications, how often, and the purpose of the mailing list.
Right to Access and Erasure: Individuals on mailing lists have the right to access their data and request deletion (the “right to be forgotten”).
What is copyright ?
Copyright is a legal protection that gives creators exclusive rights to their original works, such as books, music, art, and software, preventing others from using or reproducing those works without permission.
What is a data controller ?
Decides how and why personal data is processed and is responsible for GDPR.
Who is the ICO
Information commissioners office ICO REGULATE MUST GET IN CONTACT WITH THEM WITHIN 72 HOURS IF THERE IS A DATA BREACH
UK GDPR Rights :
Right to be informed , Right of access , Right to Rectify, Right to erasure, Right to restrict processing, Right to data portability, Right to Object
Principles of UK GDPR :
- Processed lawfully , fairly and in a transparent manner in relation to indv.
- Collected for specified , explicit purposes.
- Accurate and kept upto date
- Processed in a manner that ensures appropriate security of personal data.
What is the freedom information act 2000
Gives indvs the right of access to info held by public bodies
What are the penalties for a data breach
standard maximum
the standard maximum amount will apply, which is £8.7 million or 2% of the total annual worldwide turnover in the preceding financial year, whichever is higher.
higher maximum
The higher maximum amount, is £17.5 million or 4% of the total annual worldwide turnover in the preceding financial year, whichever is higher.
What is classified as a standard breach and maximum breach
Standard Breach Failing to keep records of processing activities (Article 30 GDPR).
Inadequate data protection impact assessments for high-risk processing activities.
Failure to report a data breach in a timely manner (within 72 hours) to relevant authorities, when required.
Maximum breach
Violating core data protection principles like data minimization, accuracy, confidentiality, and integrity (Article 5 GDPR).
Failing to obtain valid consent for processing personal data, especially for sensitive data.
Unlawfully transferring personal data outside the EU/UK without adequate safeguards.
Failing to honor individuals’ rights (e.g., the right to erasure, access, or data portability).
What is sustainability
Sustainability is meeting present needs without compromising the ability of future generations to meet their own needs
ability to balance economic, environmental, and social objectives at global, national, and local levels, with respect to land, property, and the built environment.
What is net zero carbon ?
balancing the amount of carbon dioxide emitted with an equivalent amount removed from the atmosphere, achieving a state where no net carbon emissions are added to the environment