Data Management Flashcards
What ISO is related to QMS?
ISO 9000 & 9001.
What are the roles under GDPR?
Data Controller
Data Processor
Data Subject
Data Protection Officer
What must a firm do if there is a breach in data?
What does GDPR stand for?
General Data Protection Regulation
What is GDPR?
Regulation in EU on Data Protection and privacy in the the European Union and European economic areas.
What is the role of the Data Controller?
Person who decides how and why to collect and use data and ensure it complies with data protection law.
What is the role of the Data Processor?
Separate person who processes data on behalf of the controller.
What is the role of the Data Subject?
Individual whose data is about.
What is the role of the Data Protection Officer?
A guarantor of compliance with data protection regulations.
What is the Data Protection Act 2018?
Controls how your personal information is used by businesses and government.
It is the UK’s implementation of GDPR.
What constitutes ‘personal data’?
Anything related to a person or ‘data subject’. This could be name, photo, email address, address, bank details etc.
How long should you keep data for?
- 6 years if contract is signed under hand
- 12 years if signed as a deed
- RICS recommends 15 years as this is the limitation for most claims.
What are the 7 key principles of GDPR?
1) Lawfulness & transparency
2) Purpose limitation
3) Data minimisation
4) Accuracy
5) Storage limitation
6) Integrity and confidentiality
7) Accountability
What are the 8 individual rights under GDPR?
- To be informed
- To access
- To rectification
- To erasure
- To restrict processing
- To data portability
- To object
- To automated decision making and profiling.
