Data Management Level 1 Flashcards
Can you name the recently introduced regulations set out to control how companies manage the data they hold?
Data Protection and Digital Information Bill. UK version of GDPR
Can you name the legislation this is supported by?
Privacy and Electronic Communications Regulations
How does GDPR affect your working activities?
Mainly with handling peoples data. How we use it, how we share it.
Can you name any of the data protection principles covered in the Data Protection act 2018?
used fairly, lawfully and transparently
used for specified, explicit purposes
used in a way that is adequate, relevant and limited to only what is necessary
accurate and, where necessary, kept up to date
kept for no longer than is necessary
handled in a way that ensures appropriate security, including protection against unlawful or unauthorised processing, access, loss, destruction or damage
Can you name any of the sources of data currently in use by the construction industry?
Client names, phone numbers, budgets, addresses, intentions.
How does you in-house system comply with GDPR?
Secure, only access by relevant staff, working on data lifespan.
What are you considered as under the regulations?
Data controller and processor
What is meant by to be forgotten?
Right for data to be erased / deleted.
If home or hybrid working, how would you deal with cyber security
Logging into the work network, secure home router, good security for physical data.
What current challenges is Covid and/or Brexit bringing to Data Management?
Brexit means UK doesn’t have to keep European laws. We do use these but are also creating our own versions.
Describe the different types of data
All personal data, identity, health, web data, biometric, racial, political, sexual
What are the advantages/disadvantages of a paperless office?
Less risk of physical loss or theft. More risk of all digital data being accessed in the event of a data breach.
What is an FOI request?
Freedom of Information request. public right to request personal or public information.
How long do you have to respond to an FOI request?
20 working days
Describe document storage at your office.
Locked cabinets, secure servers, access cards, clear desk policy.
What is GDPR and how do you comply?
General Data Protection Regulations, list off the principals checklist.
What are the GDPR Rights of the Individuals?
right of access,
the right to rectification,
the right to erasure,
the right to restrict processing,
the right to data portability,
the right to object,
the right not to be subject to a decision based solely on automated processing
What are the rights people have under the Data Protection Act 2018?
Right to:
be informed about how your data is being used
access personal data
have incorrect data updated
have data erased
stop or restrict the processing of your data
data portability (allowing you to get and reuse your data for different services)
object to how your data is processed in certain circumstances
What do you mean by keeping data secure, yet accessible by the right people?
Limited access rights
How do you know it’s the right time to delete information?
Typically 6 years but can vary with property.
Who is the Data Protection Officer at RBC?
Ken Thompson
