Data Management (L1) Flashcards

1
Q

How long do you need to keep data for?

A

6 years if the contract is signed underhand (simple contract)
12 years if the contract is signed as a deed
RICS recommends up to 15 years, being the limitation period for most claims
I refer to LOR’s minimum standard which require 20 years for most data and 40 years for certain key data (payroll etc)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What type of data systems are used in your organisation?

A

Shared hard drives
Software such as Microsoft Teams
Cloud systems such as ASite

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a project extranet system?

A

A computer network that allows external parties to view project files on a secure platform. These systems are secure and improve communication, however are expensive and require maintenance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the benefits of cloud-based storage systems?

A

They provide easy access anywhere in the world
They are secure, being password protected
Relatively low set up costs
Access control and restrictions are available

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What sources of pricing data are available?

A

Building Cost Information Service (BCIS)
Pricing books such as Spon’s
Benchmarking
In-house records and databases

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are pricing books?

A

They assist with estimating and valuing variations by providing key costing info, covering all the major areas of the construction process.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is BCIS?

A

The Building Cost Information Service is part of the RICS, and provides cost and price data for the UK construction industry. The data helps produce specific estimates for option appraisals, providing early cost advise and planning costs and benchmarks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the Data Protection Act 2018?

A

The Data Protection Act 2018 controls how your personal information is used by organisations, businesses, or the government. The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is GDPR?

A

General Data Protection Regulation is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It also addresses the transfer of personal data outside the EU and EEA areas.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the purpose of GDPR?

A

GDPR was designed to harmonise data privacy laws across all member countries of the EU, as well as providing greater protection and rights to individuals.

GDPR was also created to alter how businesses and other organisations can handle the information of those that interact with them. There’s the potential for large fines and reputational damage for those found in breach of the rules.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Who are the key persons outlined within GDPR?

A

Data Controller - Decides how and why to collect data
Data Processor - Person who processes the data
Data Subject - Individual whom the data is about
Data Protection Officer - Guarantor of compliance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What constitutes personal data?

A

Any information related to a natural person or ‘Data Subject’, that can be used to identify the person directly or indirectly (name, photo, bank details, medical info)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the difference between a data processor and data controller?

A

A controller is the entity that determines the purposes, conditions and the means of processing of personal data, while the processor is an entity which processes personal data on behalf of the controller.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the 7 key principles of GDPR?

A
  1. Lawfulness, fairness and transparency
  2. Purpose limitation
  3. Data minimisation
  4. Accuracy
  5. Storage limitation
  6. Integrity and confidentiality
  7. Accountability
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What are the 8 individual rights under GDPR?

A
  1. To be informed
  2. To access
  3. To rectification
  4. To erasure
  5. To restrict processing
  6. To data portability
  7. To object
  8. To automated decision making and profiling
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Who enforces GDPR?

A

The Information Commisioner’s Office

17
Q

What is the Freedom of Information Act 2000?

A

The Freedom of Information Act 2000 provides public access to information held by public authorities.

18
Q

If you intend to destroy a document, what should you consider beforehand?

A

Is a back up copy available?
Is the document an original contract / legal document?
Could the document be required for litigation or other proceedings?
Does the document relate to a live project?

19
Q

What measures could be taken to protect commercially sensitive information?

A

A non-disclosure agreement (NDA) being in place.
Physical separation of staff.
Security of stored documentation (password protected servers).

20
Q

Are there any ways that we can protect data when we are transferring it on a client’s behalf?

A

Encryption and password locking
Recorded special delivery
Mark it as confidential
Using secure networks and software

21
Q

What is an information barrier?

A

A physical and or electronic separation of individuals within the same firm. The aim is to protect confidential information.