What are the regulations around the use of data? (Data Protection Act, GDPR)
- The Data Protection Act 2018
- Freedom of Information Act 2000.
- It covers the collection, storage and processing of data and the rights for individuals to obtain copies of data about themselves.
Are you required to keep certain documents for any length of time?
- 6 year if the contract is written under hand
- 12 years for contract signed by deed
• RICS recommends 15 years as this is max a claim against professional negligence can be made
How do you ensure data is kept secure in your workplace?
I would make sure to follow my company’s data protection policy. This includes:
- Locking my computer when away
- Paper free desk and using my locker for confidential information
- Use shredder for documents
- Ensure to categorize my soft copy documents with the correct coding - eg. public, private and restricted.
What are the key differences you refer to between GDPR and the DPA?
DPA - Data Protection Act GDPR -General Data Protection Regulation
- DPA is an act and GDPR is regulation (Regulations are supplementary to act)
- The DPA is wider in scope than the GDPR,
- The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR).
What is GDPR?
- The General Data Protection Regulation is a regulation in EU law on data protection and privacy for all individuals within the European Union and European Economic Area; Came into force on 25th May 2018
- The Data Protection Act 2018 is the UK’s implementation of the General Data Protection Regulation (GDPR)
What are GDPR principles?
Everyone responsible for using personal data has to follow strict rules called ‘data protection principles’. They must make sure the information is:
- used fairly, lawfully and transparently
- used for specified, explicit purposes
- used in a way that is adequate, relevant and limited to only what is necessary
- accurate and, where necessary, kept up to date
- kept for no longer than is necessary
- handled in a way that ensures appropriate security, including protection against unlawful or unauthorised processing, access, loss, destruction or damage
How would you treat confidential data?
I would make sure to follow my company’s data protection policy. This includes:
- Locking my computer when away
- Paper free desk and using my locker for confidential information
- Use shredder for documents
- Ensure to categorize my soft copy documents with the correct coding - eg. public, private and restricted.
What is the Data Protection Act?
- It gives individuals the right to know what information is held about them and provides a framework to ensure that it’s handled properly.
- The Data Protection Act 2018 controls how your personal information is used by organisations, businesses or the government.
How do you determine if a document is public, private or restricted?
There is a matrix based on the reputation impact, financial impact and legal impact.
How is the GDPR relevant in your day to day work?
- I manage high amounts of sensitive data and this needs to be done in line with the data protection act and GDPR.
How is the GDPR relevant to the construction industry?
Companies should employ a data protection officer, make sure they comply with all the data protection policy and be clear and transparent when talking about data.
What is the freedom of information act 2000?
The Freedom of Information Act 2000 (FOIA) is a UK Act of Parliament that creates a public ‘right of access’ to information held by public authorities. There are two ways in which this is provided:
Public authorities are obliged to publish certain relevant information.
Members of the public are entitled to request information from public authorities.
Is the data protection act superseded?
Is the data protection act superseded?
What are the 7 principles of GDPR?
Lawfulness, fairness and transparency
Purpose limitation
Data minimisation
Accuracy
Storage limitation
Integrity and confidentiality (security)
Accountability
What types of data is considered under GDPR?
Any personal data including:
Name
Religion
Sexual orientation
Trade union membership
Physical or mental health
Genetic data
What must you do if you accidentally breach GDPR and send information to the wrong person?
- Report to the ICO (UK regulator) within 72 hours
- Report it internally
- Let the individual data subjects aware
What ISO stands for?
International Organization for Standardization
What is a quality management system?
quality management system is a clearly defined set of business processes. Together with the relevant documentation, it defines your commitment to creating products/service and services in accordance with pre-defined standards.
How Mace deals with GDPR?
At Mace we are committed to protecting and respecting your privacy. The Mace Privacy policy sets out the basis on which any Personal Data we collect throughout our relationship with you, will be processed by us. This includes:
- What information do we collect from you?
- Why do we collect this information?
What type of data system do you use?
- shared hard drives,
- online system such as SharePoint,
- online softwere Aconex, Conject,
- Microsoft Teams
- BIM model
What are pricing books?
Books which include pricing information about particular element of the construction building.
- BCIS Price Books - The BCIS Pricing books cover all the major areas of the construction process, from dilapidations and maintenance work, through small works and extensions to alterations and refurbishment, all the way up to new builds both large and small.
- SPON’s Architects and Builder’s Price Book- This suite of price books contains rates and prices for general building work plus civil engineering and highways, mechanical and engineering works and external works and landscaping. The benefits of the Spon’s price book is that you use its tender indexing to factor the rates and prices dependent on the location of the works whilst also making consideration for other market conditions such as inflation.
- Laxton’s Building Price Book - The builder’s price book has been in use for over 150 years and is now pushing nearly two hundred editions. Whereas Spon’s aligns to the RICS New Rules of Measurement (NRM), Laxton’s produces a version for NRM2 and its predecessor SMM7. Also available in a book or CD format, it is generally used for works in value from £25k to in excess of £5m.
What are different sources of price information available for construction professionals?
- BCIS - The Building Cost Information Service
- BMI - Building Maintenance Price Book
- Pricing books
- Elemental analysis
- In house data basis
- libraries
What are the benefits of cloud based storage systems?
- easy access anywhere in the world
- secure/password protected
- Lowe set up cost
- teams can work in real time
Are there any ways to protect data when transferring on behalf of the client?
- Encryption
- recorded special delivery
- mark it as confidential
- secure networks
- password locking.
-
Accounting principles and procedures23
-
Business planning12
-
Client care48
-
Communication and negotiation24
-
Conflict avoidance, management and dispute resolution procedures37
-
Construction Technology68
-
Construction Technology (Master)129
-
Contract Administration22
-
Contract practice105
-
Ethics, Rules of Conduct and professionalism69
-
Ethics, Rules of Conduct and professionalism (special)95
-
Health and safety96
-
Procurement and tendering21
-
Data management32
-
Diversity, inclusion and teamworking21
-
Inclusive environments10
-
Sustainability65
-
Design Economics and Cost Planning73
-
H&S regs46
-
VE/VM21
-
Regulations, legislations and listed buildings28
-
MEP29
