M - Data Management Flashcards
Why is data management important?
- Increases efficiency and productivity
- Less likely to breach GDPR
- Enhanced security
Parties in GDPR
Data Controller - Decides how and why to collect and use data. Makes sure the processing of data complies with data protection law
Data Processor - Processes data on behalf of controller
Data Subject - individual whom data is about
Data Protection Officer - Guarantor of compliance with the data protection regulations
Legislations surrounding data management
- The Data Protection Act 2018 (GDPR)
- Freedom Of Information Act 2000
Can you name some sources of cost data
- BCIS
- In-house
- Tender returns
- SPONS
- Market testing
What is GDPR?
General Data Protection Regulation
Regulation in EU law on data protection and privacy
Benefits of cloud based storage systems
- Information is backed up securely on encrypted services
- Accessibility can be manage via online settings
- Usually cheaper than physical storage
- Environmentally friendly
If 2 separate teams in RLB were working for 2 rival companies how would you ensure sensitive client data was managed
- Make client aware
- Letter of instruction to continue
- Exclusivity of Staff
- NDA’s separate working locations
- Limit access to material to authorised staff
What things must companies put in place to ensure GDPR compliance
Raise awareness across business
Audit personal data,
Update your privacy notice,
What are the 7 principles of GDPR?
- Lawfulness, fairness and transparency
- Accuracy
- Storage limitation
- Confidentiality
- Accountability
- Purpose limitation
- Data minimisation
What are the penalties for breach of GDPR regulations?
Fines up to £17.5 million or 4% of annual global turnover
Why is GDPR required
Data Protection Act 2018
Sources of information used in role
- RICS Guidance Notes
- Contract Documents
- Previous Tenders
- Cost Plans
- Benchmark Data such as BCIS, SPONS, Laxtons
- Industry Journals
- Quotations and contractor information
Persons rights under Data Protection Act (individual rights)
- To rectify
- To access
- To data portability
- To be informed
- To object
- To erasure
- To restrict processing
- To automated decision making & profiling
Non-disclosure agreement
Protection against sharing or disclosure of any confidential information covered under the NDA.
How long to keep data for?
6 years - Signed Underhand
12 years - Signed as a Deed