Data Management (L1)

Question 1

How do you consider the reliability of data when analysing comparable evidence?

Answer 1

Cross reference / benchmark and obtain a second opinion from a specialist.

Question 2

What is GDPR and what does it mean to be compliant?

Answer 2

Is designed to protect personal data usage

Question 3

What is the maximum fine for breach of GDPR? What is the fine for a data breach?

Answer 3

4% of a company’s turnover or £17.5 million - whatever is greater

Question 4

How is data managed and protected by your firm?

Answer 4

In accordance with UK GDPR - Claire Bates Co Sec

Question 5

If you are disclosing restrictive information, how would you enforce restriction on another party?

Answer 5

NDA

Question 6

How is sensitive data stored in your office?

Answer 6

Password restricted where online

Question 7

What are the types of cyber attack you may be at risk of?

Answer 7

Malware attack - Virus
Phishing attack - attacker impersonates to be a trusted contact
Password attack

Question 8

Are you aware of any legislation restricting the use of published sources of data?

Answer 8

Copyright: Copyright, Designs and Patents Act 1988: Essential that you acknowledge any copyright for information duplicated in your work.

Question 9

Whats a copyright?

Answer 9

Exclusive rights granted to a creator of work. If copyright work is used, you must acknowledge the copyright.

Question 10

Why do you think that the GDPR legislation is important?

Answer 10

Because it gives control and power to individuals as to what data/ information is held and used by third parties. Without this there could be some serious issues in regards to privacy and harassment with marketing.

Question 11

How do you/ would you comply with GDPR in the workplace?

Answer 11

When taking details of a site owner, I would ensure I have consent to store their details for future use.
Sign NDA’s working on sites that are confidential.

Question 12

What is the fine for a data breach?

Answer 12

4% of a company’s turnover or £17.5 million - whatever is greater

Question 13

Who must you report a data breach to? How long to report after a data breach? Who else must you inform?

Answer 13

report it to the Information Commissioners Office within 72 hours of the breach.
Inform PI Insurers.

Question 14

Key features of the Data Protection Act 2018? And what are some of peoples rights?

Answer 14

It gives people the right to be informed about how their personal information is used.

Right to be informed
Right of access
Right to rectification
Right to erasure
Right to restrict processing
Right to object

Question 15

Why was GDPR replaced by the DPA 2018?

Answer 15

As within the GDPR, it was felt individuals did not have sufficient control over what their information was used for.

Question 16

What has replaced the UK GDPR?

Answer 16

This has been supplemented by the Data Protection Act 2018. This combined act replaces the Data Protection Act 1998 and empowers people to take more control of how their data is used by third parties.

Question 17

Are you aware of a real life data breach example?

Answer 17

EasyJet cyber attack in 2020 effected millions of customers.

Question 18

What is the data legislation in the UK

Answer 18

UK GDPR 2021 and the Data Protection Act 2018: UKGDPR is supplemented by the Data Protection Act 2018. The UKGDPR sets out core definitions and fundamental data protection principles relating to data processing, and accountability duties to organisations and individuals who are processing personal data.

7 basic Principles – set out in article 5
1. Lawfulness, Fairness, Transparency – legal basis acting in the person’s best interest
2. Purpose Limitation – only process for purposes
3. Data Minimisation – gather and keep only what is needed
4. Accuracy – “reasonable measures” to have the most accurate data possible
5. Storage Limitation – don’t store data you do not need anymore
6. Integrity and Confidentiality – only people who are processing should have access
7. Accountability – data processor is responsible for complying with the GDPR

Question 19

What is intellectual property?

Answer 19

Intellectual property refers to any intellectual creation, such as literary works, artistic works, inventions, designs, symbols, names, images, computer code, etc

Question 20

What is the Freedom of information Act 2000?

Answer 20

Gives individuals the right of access to information held by public bodies. Public Body must inform requestor whether it is held and supply within 20 working days, it can charge for the provision of the information. Exemptions are allowed where it is contrary to the GDPR requirements, or it would prejudice a criminal matter under investigation.

Question 21

What are the limitations of primary and secondary data sources?

Answer 21

The limitation to primary data is the expense and time is spent on gathering data, whereas secondary information may be inaccurate or irrelevant. Due to the obvious procedures associated with carrying out primary research, primary data involve much costs and requires time.

However, using secondary data sources also has some drawbacks. They may not be relevant, reliable, or valid for your research question and objectives. You may have limited or no control over the quality and accuracy of the data. You may also face ethical, legal, or copyright issues in using and citing the data.

Question 22

Are electronic signatures accepted by the Land Registry? What types of documents can be signed for electronically ?

Answer 22

HM Land Registry will accept most documents being electronically signed.

The following transaction types are generally eligible for the use of electronic signatures: Commercial contracts. Employment contracts. Corporate Resolutions (subject to any provisions to the contrary under the company’s constitutional documents)

Wills cannot be signed electronically.

Question 23

Can you explain as a manager of data what you know about best practice?

Answer 23

GDPR (General Data Protection Regulation)

Managed by the ICO (Information Commissioners Office)

Data Protection Act 2018 (replaces Data Act 1998)
 Data policies how businesses and individuals control how data is used by third parties
 Gives people the right to be informed how their data is being used.

 Data breaches should be reported to the ICO within 72 hours where there is a loss of data and risk of harm to individuals

Key aims for GDPR are to protect UK citizens privacy rights

I am aware how my firm stores data

I use various different programmes to manage data and information.