Data Management

Question 1

Why is data management important?

Answer 1

Data is fundamental to the role of surveyors and many of the services we provide require and depend on data. Therefore managing it correctly and using the correct sources of data is vital for our advise as real estate professionals.

Question 2

What is negligence?

Answer 2

a failure to provide services with the standard of skill and care that would be expected from a reasonable body of the professional’s peers.

Question 3

What is the legislation for data?

Answer 3

Data Protection Act 2018 – GDPR falls under this.

Question 4

What is GDPR?

Answer 4

General Data Protection Regulations

Question 5

What are the 8 individual rights under GDPR?

Answer 5

B – Right to be informed
A – Right of access
R – Right to rectification
E – Right to erasure
R – right to restrict processing
O – right to object
D – right to data portability
A – right to automated decision making/profiling

Question 6

What are the 8 principles of the Data Protection Act 2018/UK GDPR?

Answer 6

A - Accuracy
D – Data minimisation
A - Accountability
P – Purpose Limitation (+ storage limitation)
T – Transparency, lawfulness & fairness
S – Security – integrity & confidentiality
S – Storage limitation

Question 7

When must data security breaches be reported?

Answer 7

Data security breaches must be reported in 72 hours to the ICO (Information Commissioners Office)
Fines of up to 4% of global turnover or 20 million euros (£17.5m) – whichever is higher.

Question 8

1. What is the purpose of UK GDPR?

Answer 8

2. What are three of the eight individual rights under UK GDPR?

Question 9

3. Who does UK GDPR apply to?

Question 10

4. Who is responsible for data management?

Question 11

5. What other methods of data security other than password encryption are available?

Question 12

6. What are the response procedures to an FOI request?

Question 13

7. What is FOI?

Question 14

8. What is personal data?

Question 15

Cloud systems advantages

Answer 15

• Easier access
• Better collaboration
• Records more accurate
• Safer
• Cost effective

Question 16

How do you ensure that the data you keep on your files is secure, especially when Savills acting on both tenant and landlord side?

Answer 16

Password protected files, lock computer when not there, work in different office/different teams.

Question 17

Can you give me some of the examples of data sources you use to collate comparable/rental information?

Answer 17

CoStar, Savills internal data, other agent data, Athena (Savills internal data).

Question 18

How do you verify the rental information?

Answer 18

Verify with the agent that undertook the deal.

Question 19

Why would you look to CoStar for comparable evidence?

Answer 19

To identify deals that we may not have on our system, but would be sure to verify with the agent before using it as evidence.

Question 20

Are there any instances where you have advised clients to use specific data sharing tools?

Answer 20

Box – accessible by all three parties involved. Equivalent to Dropbox. Improve client service, larger documents

Question 21

What can you give the client for a data room?

Answer 21

Details of who has accessed it? Analytics behind this. This is how I am using the data for the advice. How long people have been in, what they have downloaded and when.

Use this process to advise my client.

Question 22

What is the Freedom of Information Act 2000?

Answer 22

Gives individuals right of access to information held by public bodies.

Public body usually required to provide it within 20 working days in the format requested.
Exemptions – contrary to GDPR requirements

Question 23

What is the Data Protection Act 2018?

Answer 23

The act defines UK law on the processing of data on identifiable living people.

Question 24

How can the security of data be improved?

Answer 24

Firewalls, passwords, encryption

Question 25

What is an NDA and how do they work?

Answer 25

Non-disclosure agreement.

Legal framework used to protect sensitive and confidential information (e.g. IP)
Breach may include lawsuits, fines, compensation of the value of lost properties.

Question 26

Can you name some data security technologies?

Answer 26

Disk encryption – encrypting data on a secure drive
Regular backups off site
Password protection
Use of anti-virus software
Firewalls
2FA
Secure cloud

Question 27

What technologies to Savills have in place for data security.

Answer 27

We have a firewall/anti-virus software called Mimecast. It scans incoming email traffic and identifies potential threats.
Windows security – protects against viruses, malware and other threats

Question 28

What is malware?

Answer 28

Software specifically designed to disrupt, damage or gain unauthorised access to a computer system

Question 29

What CPD have you undertaken for data management?

Answer 29

Compliance training – included overview on GDPR and how we need to comply with the regulations

Question 30

When Can you process personal data?

Answer 30

You must have a valid lawful basis. There are 6 lawful bases for processing. Article 6 of UK GDPR:
1. Consent
2. Contract
3. Legal obligation
4. Vital interest
5. Public task
6. Legitimate interests

Question 31

What are the regulations for GDPR?

Answer 31

General Data Protection Regulations 2016

EU law transcribed into UK la after Brexit. Supplemented by Data Protection Act 2018

Question 32

What specific steps do you take to ensure compliance when mailshotting

Answer 32

I use our database on Agents Society where all enquiries are tracked and those with details on there have given their consent to be contacted if any future properties meet their requirements.

Question 33

Is there any RICS guidance on Data Management?

Answer 33

There is a Professional Standard being drafted – Data Handling and Prevention of Cybercrime.

Question 34

Who at your company has the overall responsibility for data protection compliance?

Answer 34

Overall responsibility for data protection compliance lies with the Group Legal Director & Company Secretary.

Question 35

company UK monitoring compliance responsibility?

Answer 35

MD

Question 36

What it is important you understand about as an employee?

Answer 36

That I am responsible for ensuring that I understand and comply with the requirements of the policies.

Question 37

How does your firm help you comply?

Answer 37

Through training and testing – online modules.

Question 38

What is a cookie warning?

Answer 38

Cookies track personal data through websites.

Question 39

What sources of data are there?

Answer 39

Primary – collected by myself, inspections, deals done, measurements, photos

Secondary – collected by others. Property portals, articles, firms research etc.

Question 40

Downside of photocopies

Answer 40

Boundary lines easily misinterpreted

Question 41

What advice did you provide on the security of that data? How did you ensure no one should be accessing it that shouldn’t be accessing it?

Question 42

What are some of the consumer principles under GDPR?

Question 43

You have accidentally sent a spreadsheet with all of your clients details, bank account details, name, addresses etc.

What do you do?

Answer 43

Ask the client you sent it to by accident to delete the file and disregard it and explain it was sent by accident and it included personal information of another client.

Promptly inform those who are affected of the breach
The name and contact details of our data protection officer
Likely consequences of the personal breach
Description of the measured taken to mitigate any adverse effects

If high risk which this is, then you need to report it to the ICO within 72 hours of becoming aware of the breach.

Question 44

What fine would be payable?

Answer 44

Fines of up to 4% of global turnover or 20 million euros (£17.5m) – whichever is higher.

Question 45

In your work what sources of information do you use?

Answer 45

Colleagues
Documents
The internet
Data
Journals
Files

Question 46

How long should files be kept for?

Answer 46

As a minimum files, need to be kept for:
- 5 years from the end of the relationship with a client for Money Laundering Regulations
- 6 years for taxation purposes
- 6 years under the Statute of Limitations for actions in contract or tort
- 12 years for contract made by Deed
- 16 years for latent damage including undiscovered financial loss which might arise, for example, for a valuation for lending

Question 47

Qualitative vs quantitative data?

Answer 47

Qualitative – subjective
Quantitative – numerical factual

Question 48

Why is benchmarking important in RE

Answer 48

Decision making

Question 49

How would software tool assist client in making decision

Question 50

How did you ensure data system was in line with GDPR principles

Question 51

What personal data was stored in your excel spreadsheet and how was this stored securely?
Why was it important that data is migrated accurately?

Question 52

How did you verify the data that you collected from Costar?
Who has access to the company shared drive?

Question 53

What advice did you give to your client regarding the structure of the platform to ensure compliance with GDPR principles?
How would the software tool assist your client in managing their portfolio?
Why did you recommend a computer-based database? What are the advantages and disadvantages?

Question 54

1. Why is it important to hold accurate data records and prevent loss of data?

Question 55

2. How did excel aid your data analysis and how did it highlight missing data?

Question 56

3. How did you protect against loss of data during the migration?

Question 57

4. How did you ensure the integrity of the data you were collecting?

Question 58

5. Talk me through how you extracted data from Costar and inputted it into your own data systems?

Question 59

6. How was the data presented to your client and why?

Question 60

7. How has the data system improved your advice to your client?

Question 61

8. How have you ensured the security of your data?

Question 62

9. Why could service charge caps not be inputted into the new system?

Question 63

10. How did your actions provide better data to your client?

Question 64

Can you explain the concept of metadata and its role in organizing and retrieving property data?

Question 65

Can you describe a situation where you had to manage large sets of property data? How did you ensure accuracy and consistency?

Question 66

Can you describe a time when you had to manage inconsistent or incomplete property data? What steps did you take to resolve the issue?

Question 67

How have you used data analytics to assist in a commercial property valuation or management decision?

Question 68

How do you ensure that historical data is correctly archived and accessible for future use in property management?

Question 69

Can you provide an example of when you gave advice on data management processes to a client or your firm? How did your advice improve their data handling practices?

Question 70

How have you advised a client or firm on the importance of maintaining accurate property data to support investment decisions?

Question 71

Can you describe a time when you advised a client on data sharing protocols with external stakeholders? How did you ensure that both compliance and operational needs were met?

Question 72

Have you ever had to recommend the implementation of a new data management system for a property portfolio? What factors did you consider in making this recommendation?

Question 73

How would you advise a client on ensuring their data management practices comply with legal obligations and industry standards?

Question 74

Can you provide an example where you helped a client or firm use data to gain competitive insights in a property market or transaction?

Question 75

A client has recently acquired a large commercial property portfolio but has incomplete and disorganized data from the previous owner. How would you help them manage and clean this data for future use?

Question 76

You are tasked with preparing a comprehensive data report on the performance of a property portfolio. How would you structure and present the data to ensure it is actionable and clear for your client?

Question 77

A client wants to improve the energy efficiency of their buildings and asks for data to support decision-making. What types of data would you collect and how would you present it to guide their sustainability strategy?

Question 78

You discover a data breach affecting property management systems that contain sensitive tenant and financial information. How would you manage the situation and what advice would you give the client regarding future data security?

Question 79

client is interested in using machine learning or AI to analyze trends in their property portfolio. What type of data would you need, and how would you ensure the quality and relevance of the data for this purpose?

Question 80

How do you ensure data is stored securely?

Question 81

speak through one example and asked what would happen if someone breached the data room

Question 82

What is copyright and how is it protected?

Question 83

What personal data was stored in your excel spreadsheet and how was this stored securely?

Question 84

Why was it important that data is migrated accurately?

Question 85

How did you verify the data that you collected from Costar?

Question 86

What advice did you give to your client regarding the structure of the platform to ensure compliance with GDPR principles?

Question 87

How would the software tool assist your client in managing their portfolio?

Question 88

Why did you recommend a computer-based database? What are the advantages and disadvantages?