Data Management Flashcards
What data do you typically store of clients?
Typically personal information such as name, address, email, phone number and commercially sensitive data such as information relating to security, transactions etc.
How long should you store the data for?
The shortest time you should keep files is six years (breach of contract claims) but the Limitation Act 1980 provides for a period of up to 15 years for a professional negligence claim (injury/loss etc). GDPR does not specify retention periods for personal data. Instead, it states that personal data may only be kept in a form that permits identification of the individual for no longer than is necessary for the purposes for which it was processed.
What does the Limitation Act 1980 entail?
Limitation laws prevent certain legal claims being brought against a person or company after a defined period of time.
What are the key principles of GDPR (General Data protection Regulations )?
1) Lawfulness, fairness and transparency 2) Purpose limitation 3) Data minimisation 4) Accuracy 5) storage limitation 6) Integrity and confidentiality 7) Accountability
What are the penalties for not complying with GDPR?
Tier 1 - 2% turnover / 10million Euros - the greater
Tier 2 - 4% turnover / 20 million euros - the greater.
How do you manage date at RLB?
Data is managed through RLB’s teams system, provides a secure platform to which job details are stored and are made available to team specific personnel. Our data management system is compliant with ISO9001:2015
What is the Freedom of Information Act 2000?
Gives individuals rights to access information held by public bodies.
How do you delete data?
Right to erase - verbal or written request. Company 1month to reply. Not automatic response to delete.
What is BIM?
Building Information Modelling - a design process. Designing a building collaboratively using 1 system of models. Allows the building to be constructed digitally first to uncover any issues prior to the actual construction.
Who polices electronic data management?
Information Commissioners Office, all firms must pay data protection fee to the ICO.
What are the timescales for reporting a data breach?
72hrs.
What are the 4 levels of BIM?
Level 0 - Unmanaged CAD,
Level 1 - Managed CAD 2D / 3D,
Level 2 - Managed 3D with data but created in separate discipline models,
Level 3 - Single online model with construction sequencing, costs and life cycle info
What are the roles under GDPR?
Data Subject - person who is the subject of the data.
Data Controller - collects data and determines use of data.
Data Processor - processes data.
Data Protection Officer - monitor internal compliance
Supervisory authority - independant authority responsible for enforcing GDPR.
Describe the Data Protection Act 2018?
Controls how your personal information is stored and used. Uk’s implementation of the GDPR. Stronger protection race, religious beliefs & sexual orientation
What are the rights under the data protection Act ?
Right to be informed
Right of access
Right to rectification
Right to erasure
Right to restrict processing
Right to data portability
Right to Object
Right to object to automated decision making
