Data Management - Level 1 Flashcards

1
Q

How is data managed and protected in your firm?

A
  1. Secure document storage
  2. Back up of documents
  3. Process for sharing documentation
  4. Formatting and standardisation of reports
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is GDPR?

A

The General Data Protection Regulations.
It is a regulation in EU law for protection and privacy in the EU and European Economic Area.
It addresses the transfer of personal data outside the EU and EEA.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What does it mean to be GDPR compliant?

A

GDPR is a regulation that require businesses to protect the personal data and privact of EU citizens for transactions that occur within EU member states.
Non-compliance could cost companies dearly.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the 7 principles of GDPR/key principles of Data Management Act 2018?

A
  1. Lawfulness, fairness and transparency
  2. Purpose limitation
  3. Data minimization
  4. Accuracy
  5. Storage limitation
  6. Integrity and confidentiality
  7. Accountability
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What things must companies put in place to ensure GDPR compliance?

A
  1. Raise awareness across your business
  2. Audit all personal data
  3. Update your privacy notes
  4. Review your procedures supporting individuals rights
  5. Identify and document your legal basis for processing personal data under he GDPR
  6. Review how you seek obtain and record consent
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How can you ensure data security?

A
  1. disk encryption
  2. regular back ups off site
  3. password protection
  4. anti-virus software
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is copyright?

A

Exclusive rights granted to the author or creator of any original work. These rights can be licensed, assigned or transferred.
It is a form of intellectual property.

All copyrighted material used in work must be acknowledged.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the Data Protection Act 2018?

A

This is the Act that implements GDPR in the UK and relates to the protection of personal data. It came into force on 25th May 2018 and replaced the Data Protection Act 1988.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the key requirements of the Data Protection Act 2018?

A
  1. Obligation to conduct data protection risk assessment
  2. Rights to individuals to have access to information on what personal data is held and what is erased.
  3. A data controller decides how and why personal data is processed.
  4. NEW REG - ‘data accountability’ ensuring organisations can prove to the ICO (Information Commissioner’s Office how they comply with the new regulations.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What happens if there is a data breach?

A

Inform ICO within 72 hours when there is a loss of personal data and and a risk of harm to individuals

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the 8 Individual rights under GDPR?

A
  1. Right to be informed
  2. Right to access
  3. Right to rectification
  4. Right to erase
  5. Right to restrict processing
  6. Right to data portability
  7. Right to object
  8. Rights to automated decision making and profiling
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What article of Data Protection Act 2018 relates to storage of personal data?

A

Article 5(1) states that data must be;
1. processed lawfully, fairly and in a transparent manner
2. collected for specified purposes
3. hold only what is adequate and necessary for the required purposes
4.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What does Article 5(2) of Data Protection Act 2018 state?

A

“the controller shall be responsible for, and be able to demonstrate, compliance with regulations.”

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is the Freedom of Information Act 2000?

A

gives individuals the right to access information held by public bodies. Must be supplied in 20 working days.
Exceptions;
1. if contrary to GDPR requirements
2. it would prejudice a criminal matter under investigation
3. it would prejudice a persons/organisations commercial interest

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is a Non-Disclosure Agreement?

A

A contract by which one or more parties agree not to disclose confidential information that they have shared with each other as a necessary part of doing business together. e.g. accounting and financial stability of a company.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is the proposed RICS on cybercrime?

A

RICS Professional Statement ‘Data Handling and Prevention of Cybercrime’.

17
Q

What will the RICS Professional Statement ‘Data Handling and Prevention of Cybercrime’. address?

A
  1. encryption of protect data on portable devices
  2. best practice when using cloud based storage facilities
  3. ensuring appropriate data handling policies are in place in the event of a data breach or malware attached.

This is being put in place to protect a firm from serious reputation damage and financial loss.

18
Q

What is the process for updating your systems with personal data?

A

refer to GDPR principles for accuracy

19
Q

What is a locum agreement?

A

arrangements for if a professional is unavailable

20
Q

What does BEL do to protect information?

A
  1. Internal procedures -
  2. GDPR Officer
  3. Staff Training - understand Data Protection Act 2018.
  4. Data processing - password protected and request permission prior to passing information on.
21
Q

Why do I handle personal data?

A
  1. leaseholders

2. contractors

22
Q

How do I ensure leaseholders information is kept safe?

A
  1. Password protection

2. Check email recipients before sending

23
Q

What is the process of assignment?

A

CHECK LEASE CLAUSE
1. Leaseholder informs LL 2. LL solicitor draws up a licence to assign 3. AML/Identity/Credit checks 4. Rent deposit agreed 5. Sign.