Data Management

Question 1

What are the principles of UK GDPR and the Data Protection Act 2018?

Answer 1

Controls how personal data is used by organisations and businesses. Everyone using data must follow seven data protection principles:

D- Data Minimisation
A- Accuracy
T- Transparency
A – Accountability
F- Fairness
I- Integrity and Confidentiality
L- Lawfulness
E- Explicit
S- Storage limitation

Question 2

What are the UK GDPR rights for individuals?

Answer 2

1. Right to be informed how your data is used
2. Right of access to personal data
3. Right to correct incorrect data
4. Right to erasure (Delete all your data)
5. Right to restrict (Stop processing of your data)
6. Right to data portability (to use for their own purposes)
7. Right to object (How your data is processed in certain circumstance)
8. Right to automated decision making and profiling (A human to make decisions about their data)

Question 3

What do the Privacy and Electronic Communications Regulations 2003 apply to?

Answer 3

The Privacy and Electronic Communications Regulations 2003 (PECR) apply to direct marketing by electronic means (phone, email, text, fax), the use of website cookies and similar tracking technologies, and the security of public electronic communications services. These regulations establish specific privacy rights related to electronic communications, requiring consent for most electronic marketing and consent for storing cookies on a user’s device.

Question 4

What is copyright?

Answer 4

Copyright is a legal right that protects original creative works, such as books, music, films, and computer programs, by granting their creators exclusive rights to control their use, distribution, and adaptation for a limited time

Question 5

What is Intellectual Property?

Answer 5

Intangible property that is the result of creativity, such as patents, copyrights, etc.

Question 6

What is the Freedom of Information Act 200?

Answer 6

Grants the public in the UK the right to request and access recorded information held by public authorities, promoting transparency and accountability in government.

Question 7

Can you tell me about the retention of files and the Limitation Act 1980?

Answer 7

Purpose: This Act specifies the timeframes within which legal proceedings must be started in England and Wales.
Common Six-Year Period: For most contractual claims, a six-year limitation period applies.
Impact on Retention: Businesses often use this six-year timeframe as a minimum standard for retaining documents related to contracts, ensuring they can defend against claims that might arise after the contract’s expiry.

Question 8

What is the difference between a deed and a registered title?

Answer 8

Deed is paper, registered title is an electronic record of ownership

Question 9

What does encryption mean?

Answer 9

It is password-protected.

Question 10

What is an Electronic Document Management System (EDMS)?

Answer 10

An Electronic Document Management System (EDMS) is a software solution that digitally captures, stores, organises, manages, and retrieves electronic documents and scanned images.

Question 11

Are electronic signatures accepted by the Land Registry?

Answer 11

Yes, HM Land Registry accepts electronic signatures (e-signatures) for various property transactions, including transfers, leases, and mortgages, as long as they are conveyancer-certified.

Question 12

What is VLOOKUP used for?

Answer 12

VLOOKUP is an Excel function used to search for a value in the first column of a table and return a corresponding value from another column on the same row

Question 13

How do you ensure data integrity in performance reporting?

Answer 13

Audits, training

Question 14

How do you deal with a data breach?

Answer 14

72 hours to inform the Information Commissioner’s Office (ICO)

No later than 48 hours - Report breach to service central and manager

Question 15

What is the maximum fine for a data breach?

Answer 15

The maximum fine is 17.5 milion pounds or 4% of global turnover.

Question 16

What is the DATA PROTECTION and DIGITAL INFORMATION BILL 2023 (DPDI Bill)?

Answer 16

Come into force Spring 2024.

• Most of the changes are intended to make it easier to comply with UK Data Protection Law.
• More practicable and with less burden on the firms

Question 17

What are the FOI reasons for refusal?

Answer 17

1. Prejudice criminal matter under investigation or a person’s commercial interest
2. Too costly or too much staff time
3. The request is vexatious.
4. The request is a repeat of previous from same person
5. Contrary to GDPR

Question 18

What is the legislation that governs FOIs?

Answer 18

Freedom of Information Act (FOIA) 2000

Question 19

What is the Data Protection Act 1998?

Answer 19

The UK Data Protection Act 1998 laid the first foundation of GDPR, with very similar principles to today’s GDPR., but it was tailored for the UK context, such as rules for national security, public authorities, and the age of consent.

Most UK businesses and organisations must comply with two major data privacy regulations that came into force on May 25, 2018:

The EU General Data Protection Regulation (GDPR)
The UK Data Protection Act (DPA) 2018