Data Protection Flashcards
What kind of data do you collect in your role?
Collect data on new land opportunities (address, no units, vendor, agent, planning status, project team) on Clarions National Workbook
Sales data from right move and land insight, land registry, when collecting evidence for sales comparables
What is Clarions data protection training?
Personal data
Special category
Privacy note
ICO -Information commissioner’s office
The freedom of information act 2000 - SAR respond one month
What are the risk associated with poor data management?
Reputation
Financial loss - independent commissioners office - greater of 4% of global turnover or 20m euros
What are the key principles of GDPR?
PAID PAS
1. Processed fairly and lawfully
2. Accuracy - kept up to date
3. Integrity and confidentiality
4. Data minimization
5. Purpose limitation
6. Accountability
7. Storage limitation
What is the Data Protection Act 2018?
The Data Protection Act 2018 controls how your personal information is used by organisations, businesses or the government.
The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR).
General Data Protection Regulation (GDPR) and the Data Protection Act 2018 (DPA 2018) were introduced.
Everyone responsible for using personal data has to follow strict rules called ‘data protection principles’. PAID PAS
First major update to data protection law for over 20 years, and include several changes that modernise the approach to the protection of personal information.
The new rules do not apply to:
- Information that cannot identify you
- Information about deceased people.
Give me a time where you have complies with GDPR in your role?
- consider email distribution (bcc)
- keeping personal information in password protected documents (CVs)
- disposals of documents in confidential bins
What are your rights under the GDPR 2018?
RED ROAR I
R - relation to automation
E - erasure
D - data portability
R - rectification
O - object
A - access
R - restricted processing
I - informed
What is data protection?
the process of safeguarding information from being compromised, lost or stolen.
What is personal data?
Personal data – information that can identify you e.g. NI Number, Age, DoB, Name, Address, Email etc
What is special category data?
Special category -something more sensitive about a person and has extra protection. Seen as more private and could create risks to the individuals rights and freedom. More likely to lead to discrimination.
Race / ethnic origin
Political opinions
Religion
Trade union membership
Genetic data
Health data - physical / mental
Sex life
Sexual orientation
What act allows public to obtain information from a public authority?
The freedom of information act 2000
SAR - respond within one month
What is a privacy note?
Privacy note - All Clarion staff and customers have access to our privacy notice which sets out what personal information Clarion collect and use, the purposes for which it is used, how it is shared with some other organisations, how long it will be kept for, and other relevant information.
What is a data breach?
an incident whereby personal data has been potentially viewed, stolen or used by an individual without permission to do so.
What happens if a data breaches occurs?
his may have to be reported to the regulator (ICO - Information commissioner’s office) within 72 hours in order for them to make an assessment as to how serious the breach is.
Why so records need to be retained or disposed of?
Retain minimum records for:
Commercial reasons
To comply with statutory requirements
To help improve operational efficiency and retention costs.
