Data management Flashcards
What is meant by the term confidentiality?
Where information is provided but is subject to confidence and not shared without permission.
What is your understanding of the term Meta Data?
This is information about a specific piece of data- structured data that provides information about other data, such as its purpose, origin, and how to access it
Example of meta data
When sharing a cost planning document- the meta data associated with this would be the author, the file size, the date the document was created, and keywords to describe the document.
Why is this important?
This must be afforded the same level of care as all other confidential data. When sharing a document we should ensure any other confidential metadata is not shared inadvertently.
What is your understanding of Intellectual Property?
This is the right to control the use and ownership of original works.
note: works created by an employee typically belongs to the employer unless copyrights are put in place.
Copyright
It is common in construction for a client to be granted a licence for use and reproduction of copyright material which must be clearly defined. EXAMPLE: This could be use of a design by a specialist subcontractor
What does GDPR stand for?
(EU) General Data Protection Regulations
What are the 8 Individual rights under GDPR?
- The right to be informed
- The right of access
- The right of rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- The right of automated decision making and profiling
(Diversity, inclusion and team working)
Who are the key persons outlined with GDPR?
- The controller
- The Processor
- Data Protection Officer (DPO)
What is the role of the controller?
This is the natural person or legal entity that determines the purposes and means of the processing of personal data e.g. when processing an employee’s personal data, the employer is the controller.
What is the role of the processor?
This is the natural person or legal entity that processes personal data on behalf of the controller for example a call centre acting on behalf of its client is considered to be a processor.
What is the role of the data protection officer?
This is a leadership role required by EU GDPR. This role exists within companies that processes the personal data of EU citizens. A DPO is responsible for overseeing the data protection approach, strategy and its implementation.
What are a person’s rights under the Data Protection Act?
People have the right to:
- to be informed about how their data is being used
- the right to access their data
- the right to have incorrect information updated
- to have their data erased
- to stop/restrict the processing of their data
- the right of portability
- to object to the use of their data
What is the Data Protection Act 2018?
This act replaces the 1998 legislation and manages how personal data is processed by organisations and the government.
What are the key principles of the data protection act 2018?
The act ensures that data is:
- used fairly, lawfully and transparently
- used in a way that is adequate, relevant and limited to only the purpose it is intended.
- is retained for no longer than is necessary
- processed securely including the protection against unlawful use, loss or destruction