Data Management

Question 1

What is the term Confidentiality?

Answer 1

Where information is provided but is subject to confidence and not shared without permission.

Question 2

What is Meta Data?

Answer 2

A set of data that gives information about other data

Question 3

Why is Meta Data important?

Answer 3

It includes details such as the author, file size, creation date, and keywords, and must be treated with the same care as confidential data.

Question 4

What should be ensured when sharing a document?

Answer 4

Confidential meta data is not shared inadvertently.

Question 5

What is Intellectual Property?

Answer 5

The ownership of original works.
intangible property that is the result of creativity, such as patents, copyrights, etc

Question 6

Who generally owns work created by an employee?

Answer 6

The employer, unless copyrights are established otherwise.

Question 7

What is the Freedom of Information Act 2005?

Answer 7

The primary piece of UK legislation controlling access to official information.

Question 8

What does the Freedom of Information Act permit?

Answer 8

The public right of access to information held by public authorities.

Question 9

What are the benefits of cloud-based storage systems?

Answer 9

• Information is backed up securely on encrypted servers
• Accessibility can be managed via online settings
• Often cheaper than physical storage
• Convenient for sending and sharing files
• Environmentally friendly
• Multiple users can access the same documents
• Documents and folder systems can be synchronized

Question 10

What is a non-disclosure agreement?

Answer 10

An agreement to protect against the disclosure of confidential data.

Question 11

When are non-disclosure agreements commonly used?

Answer 11

When sharing confidential, sensitive, innovative, or intellectual property information.

Question 12

What is the Data Protection Act 2018?

Answer 12

Legislation that manages how personal data is processed by organisations and the government.

Question 13

What does the Data Protection Act 2018 replace?

Answer 13

The previous 1998 legislation.

Question 14

What are the key principles of the Data Protection Act 2018?

Answer 14

The act ensures that data is:-
o Used fairly, lawfully and transparently.
o Used in a way that is adequate, relevant and limited to only the purpose it is intended.
o Is retained for no longer than is necessary.
o Processed securely including the protection against unlawful use, loss or destruction

Question 15

What rights do individuals have under the Data Protection Act?

Answer 15

People have the right to:-
o To be informed about how their data is being used.
o The right to access their data.
o The right to have incorrect information updated.
o To have their data erased.
o To stop or restrict the processing of their data.
o The right of portability.
o To object to the use of their data.

Question 16

Who is the Controller in GDPR?

Answer 16

The person or entity that determines the purposes and means of processing personal data.

Question 17

What is the role of the Processor in GDPR?

Answer 17

A person or entity that processes personal data on behalf of the Controller.

Question 18

What is the role of a Data Protection Officer (DPO)?

Answer 18

A leadership role overseeing data protection strategy and implementation.

Question 19

What are the 8 individual rights under GDPR?

Answer 19

• Right to be informed
• Right of access
• Right of rectification
• Right to erasure
• Right to restrict processing
• Right to data portability
• Right to object
• Rights of automated decision making and profiling

Question 20

What sources of information are used in day-to-day surveying?

Answer 20

• RICS Guidance Notes
• Contract Documentation
• Previous Tenders
• Cost Plans
• Valuation data
• Industry Journals
• Specialist sub-contractor information

Question 21

How do you manage sources of information for compliance?

Answer 21

• Ensure confidentiality under NDA
• Use secure document storage
• Lock computer when away
• Obtain written permission for sharing non-public information

Question 22

How do companies ensure compliance with Data Protection legislation?

Answer 22

• Retain only necessary data
• Inform individuals about data retention
• Hold data securely
• Keep information up to date and delete unnecessary data

Question 23

What is copyright?

Answer 23

• A set of exclusive rights granted to the author or creator of original work, includes right to copy

Question 24

Can you name any data security technologies?

Answer 24

• Disk encryption
• Regular backups off site
• Cloud storage Password protection and use of anti-virus software protection
• Firewalls and disaster recovery procedures

Question 25

What is the UK General Data Protection Regulation and the Data Protection Act, 2018?

Answer 25

* UK GDPR is covered by the Data Protection Act 2018 * Aims to create single data protection regime affecting businesses and empower individuals to take control of how their data is used by third parties * It gives people rights to be informed about how their personal information is used

Question 26

What are the main principles of the UK GDPR

Answer 26

Data must be: * Processed lawfully and transparently * Collected for specified, explicit and legitimate purposes * Adequate, relevant and limited to what is necessary for those purposes * Accurate and kept up to date * Kept in a form which permits identification of data subjects for longer than necessary * Processed in a manner that ensures appropriate security of the personal data

Question 27

Do you know the 8 individual rights under UK GDPR?

Answer 27

1. Right to be informed 2. Right of access 3. Right to rectification 4. Right to erasure 5. Right to restrict processing 6. Right to data portability 7. Right to object 8. Rights to automated decision making and profiling (as undertaken by insurance companies)

Question 28

Do you know any statute regarding information being held by public bodies?

Answer 28

Freedom of Information Act 2000

Question 29

Can you explain the principles of the Freedom of Information Act 2000?

Answer 29

Gives individuals the right of access to information being held by public bodies. Public body is required to supply requested information within 20 working days

Question 30

Which methods/tools can be used to improve security of electronic data

Answer 30

firewalls, encryption, cloud-based systems and passwords

Question 31

Can you name any guidance regarding how RICS members and firms store data?

Answer 31

Proposed RICS Professional Standard on Data Handling and Prevention of Cyber on Data Handling and Prevention of Cybercrime

Question 32

Do you know what the Proposed RICS Professional Standard on Data Handling and Prevention of Cyber on Data Handling and Prevention of Cybercrime relates to?

Answer 32

address how surveyors capture, store and share data appropriately and securely. Likely to mandate policies, practices and training for all firms and members

Question 33

What is a Non-Disclosure Agreement (NDA)

Answer 33

* Legally enforceable contract between two parties creating a confidential relationship regarding sensitive info