Data Management Flashcards
What is the Data Protection Act 2018?
- The act replaces the previous 1998 legislation and manages how personal data is processed by organisations and the government
- It is the UK legislation for the implementation of the EU General Data Protection Regulations (GDPR).
What are the key Principles of the Data Protection Act 2018?
The act ensures that data is:
- Used fairly, lawfully and transparently.
- Used in a fair way that is relevant and limited to only the purposed use it is intended.
- Is retained for no longer than is necessary.
- Processed securely including the protection against unlawful use, loss or destruction.
What are a person’s rights under the Data Protection Act?
People have the right to:
- Be informed about how their data is being used,
- The right to access their data.
- The right to have incorrect information updated.
- To have their data erased.
- To stop or restrict the processing of their data.
- The right of portability.
- To object to the use of their data.
What is your understanding of the term confidentiality?
Where information is provided but is subject to confidence and not shared without permission.
What is your understanding of intellectual property and copyright?
- This is to control the use and ownership of original works.
- Work is generally created by an employee and usually belongs to their employer unless copyrights are put in place.
- It is common within construction for a client to be granted license for use and reproduction of copyright material which should be clearly defined.
What is the freedom of information act 2005?
- This is a UK primary legislation that controls the access to official information.
- The act permits the public right of access to information held by public authorities.
What are the benefits of cloud storage systems?
- Information is backed up securely in encrypted servers.
- Accessibility can be managed via online stores.
- The costs of physically storing files is expensive and sharing files online is more convenient than mailing files.
- Cloud systems are more environmentally friendly.
- Multiple users can access the same documents.
- Documents and folder systems can be synchronised.
What different sources of information do you use day-to-day as a building surveyor?
- RICS Guidance Notes and Professional Standards
- Contract Documentation
- Previous Tenders
- BCIS / other valuation data.
- Industry journals.
How do companies ensure compliance with the Data Protection legislation generally?
- They should ensure that they only retain data to perform their day-to-day operations.
- If they are retaining a company or organisations data they should ensure the person is kept informed and that they understand why the data is being stored.
- They should hold the data securely.
- They should also keep the information up to date and delete information that they no longer need.
What are the key persons outlined in the Data Protection Act 2018?
- Controller: -
- The natural person or legal entity that determines the purpose and means of processing personal data.
- For example, An employer is considered the controller when processing employees personal data. - Processor
- The natural person or legal entity that processes personal data on behalf of the controller.
- For example, a call centre acting on behalf of its clients is a processor. - Data Protection Officer
- The data protection officer is a leadership role required by the data protection act.
- This role exists within companies that process personal data of citizens.
- DPO’s are responsible for overseeing the data protection approach, strategy, and its implementation.
