Data Management

Question 1

Can you tell me three principles of UK GDPR and the Data Protection Act
2018?

Answer 1

Lawful, fairness & transparency
Accountability
Integrity and Confidentiality
Data minimisation

Purpose limitation
Accuracy
Storage Minimisation

Question 2

How do you comply with UK GDPR and the Data Protection Act 2018 in
your role?

Answer 2

Explicit Consent must be freely given and informed.

Ensure that you only collect the minimum amount of personal data required for the purpose you are processing it.

Ensure data is kept secure - include using encryption, strong passwords and two factor authentications.

Question 3

What are the key rights under the GDPR?

Answer 3

Rectification
Erasure / forgotten
Access
Restrict processing

Informed
Data portability
Object
Automated decision making

Question 4

What are the UK GDPR (General Data Protection Regulation 2018) and Data Protection Act 2018

Answer 4

Replaced Data Protection Act 1988 - Provides a framework for processing personal data in the UK.

Incorporates GDPR into UK law, ensuring data protection rules align with EU regulation.

Provides people the right to be informed about how their information is used.

Question 5

How do you safely secure data?

Answer 5

• Disk encryption
• Regular backups off site
• Cloud storage
• Password protection & anti-virus
  software
• Firewalls and disaster recovery
  procedures

Question 6

What is a database?

Answer 6

Organised collection of structured information/data

Question 7

What is copyright?

Answer 7

• Exclusive rights granted to the
  author/creator of original work – right
  to copy.
• Can be licensed, assigned/transferred.
• Form of intellectual property
• Crown copyright – refers to all material
  created/prepared by Government.

Question 8

What is the Freedom of Information Act 2000?

Answer 8

The right to access information provided by public bodies.
Must supply within 20 working days.

Question 9

What is Land Registry?

Answer 9

Records and maintains information about land and property ownership.
e.g. title register, title plan, and leases.

Question 10

What is a title register?

Answer 10

Legal document that provides details about the ownership and legal status of a property or land.

Question 11

What is a title plan?

Answer 11

Map/diagram to accompanies that title register outlining the land, location and boundaries within the title.

Question 12

What is CoStar?

Answer 12

Global data platform for commercial real estate information, analytics and news.

Question 13

What is an NDA?

Answer 13

Non-Disclosure Agreement - Legally binding contract relating to sensitive information.

If breached, party affected can take legal action and seek damages.

Question 14

What is a subject access request?

Answer 14

The request used to obtain your personal information from a public authority.

Question 15

What is personal information?

Answer 15

Information that can identify an individual, directly or indirectly.

Question 16

How is your data backed up?

Answer 16

Stored remotely in a cloud.

Question 17

What is the deadline for reporting a data breach of personal data?

Answer 17

72 hours to ICO (Information Commissioner’s Office)

Question 18

What are the fines for data breaches?

Answer 18

Up to 4% global turnover of the company or up to £17.5 million, whichever is greater.
Policed by ICO.