Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

RICS - APC Building Surveying > Data Management > Flashcards

Data Management Flashcards

1
Q

What is the key principles of the Data protection Act 2018

A

The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the key principles of the freedom of info Act 2000

A

Applies to all public bodies in England, Wales and Northern Ireland. The act relates to all information held in any form. Acknowledge request for information within 20 days.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What does GDPR stand for

A

General Data Protection Regulation which came into force in May 2018

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the rights under GDPR

A 
The right to:
Decisions in relation to automated profiling etc
Access
Informed
Restrict processing
Rectification
Erase
Object
Data portability
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the 6 principles of GDPR

A 
Lawfulness, fairness and transparency
Purpose limitation
Data minimisation
Accuracy
Storage limitation
Integrity and confidentiality
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What databases do you use

A

Land Registry

Planning Portal

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How do you protect data in your office?

A

Data is protected by;

  • Ensuring consent is received to store data
  • Only use data for the exact reason it was collected
  • All PC’s and mobile devices are encrypted to ensure high levels of security
  • We only process data that is required and delete data when it is no longer required
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the consequences of breaking GDPR regulations

A

This is the biggest change in GDPR - There are 2 tiers;

Tier 1 (Lesser Breaches): Companies can be fined up to 2% of their annual global turnover or €10million, whichever is greater

Tier 2 (Serious Breaches): Companies can be fined up to 4% of their annual global turnover or €20million, whichever is greater

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

When did GDPR come into force

A

25th May 2018

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Who policies GDPR

A

Information Commissioners Office (ICO)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How does your firm protect data?

A

Information barriers

Do not keep confidential info on desks

Appointed a data protection officer

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How has GDPR impacted your day to day work? Give an example of a practice that you have had to change since it’s introduction?

A

Consent to hold customer data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

How do you keep you professional work secure at home ?

A

Stronger password, lock the screen when I am not using it and keep computer away from windows.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

what is the difference between a data controller and data processor ?

A

The data controller is the person (or business) who determines the purposes for which, and the way in which, personal data is processed.

By contrast, a data processor is anyone who processes personal data on behalf of the data controller

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Core Principles of Data Protection?

A

x6 (PLAID)

1 Purpose Limitations – Only use data for the exact reason you collect it.

2 Lawfulness, fairness & Transparency – Is everything legal, fair & transparent for your reasons for collecting the data?

3 Accuracy – All data needs to be up to date & correct.

4 Integrity & Confidentiality – Security needs to be up to speed, both on PCs (by encryption) & physically (organise so documents are not accessible)

5 Data minimisation - only process data you require. Don’t process extra information that is not needed

6 Storage Limitation – Delete data when it is no longer required

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What are the procedures for data breaches under GDPR?

A

Before there was no obligation to report a data breach. Under GDPR you now have 72 hours to report to the Data Protection Commission.

17
Q

What is the purpose of a Data Protection Officer?

A

A Data Protection Officer is now required if your company is;

  • An organisation that carries out ‘regular & systematic monitoring of individuals on a large scale’
  • An organisation that carries out the large-scale processing of special data categories, such as health records or criminal convictions
  • A public authority
    The DPO is in place to be the Data Protection representative. They will make sure everything in your company is above board & in compliance with the law
18
Q

How the new GDPR rules affected you carrying out your duties?

A

As a company we;

  • Got an external company into the office to advise (Code-in-motion)
  • Brainstorming session
  • Full audit on stored data
  • Performed a risk analysis for data held on each employee
    o Name
    o Why is this data held?
    o Who has access?
    o Who is the data sent to outside office?
    o Who can access the files?
    o What could be done to protect the data
  • Letter issued to employees asking for consent to personal data
  • Steps taken for encryption of all business phones & laptops
  • Website updated to show data protection policy

RICS - APC Building Surveying (8 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions