Data Management

Question 1

What is Data Management?

Answer 1

The practice of collecting, keeping, using and processing data securely and efficiently

Effective data management is crucial for organizational success.

Question 2

When collecting data from various sources, what should one do? List the steps.

Answer 2

• Verify the data
• Ensure accuracy
• Ensure it’s up to date
• Ensure it’s reliable

These steps help maintain the integrity of the data collected.

Question 3

What law was in place before the GDPR?

Answer 3

Data Protection Act 1998

This act was the primary legislation for data protection prior to GDPR.

Question 4

What is the Data Protection Act 2018?

Answer 4

• UK’s primary legislation around how personal data is processed
• Implementation of the EU General Data Protection Regulations (GDPR)

This act updates data protection laws in the UK.

Question 5

What are the 7 Key Principles of the Data Protection Act 2018?

Answer 5

• Used fairly, lawfully and transparently
• Purpose Limitation
• Storage Limitation
• Data Minimisation
• Accuracy
• Confidentiality
• Accountability

These principles guide the processing of personal data.

Question 6

What are a person’s rights under the Data Protection Act 2018? List them.

Answer 6

• To be informed
• Right to access
• Right to Rectification
• Right to erasure
• Right to restrict Processing
• Right to Object
• Right of portability
• Rights related to Automated Decision Making

These rights empower individuals regarding their personal data.

Question 7

What is the GDPR?

Answer 7

The EU’s regulations with regard to how Personal Data is processed by organisations

GDPR aims to enhance data protection and privacy for individuals.

Question 8

Who are the key persons outlined within GDPR?

Answer 8

• Data Controller
• Data Processor
• Data Protection Officer
• Subject

Each role has specific responsibilities regarding data processing.

Question 9

Who enforces the Data Protection Act 2010?

Answer 9

The information commissioners office

This office investigates, issues notices, and imposes fines for non-compliance.

Question 10

How would you respond if you discovered a breach in your firm? List the steps.

Answer 10

• Report internally immediately
• Notify the Data Protection Officer
• Look to contain the breach
• If required, notify the ICO

Prompt action is crucial to mitigate the impact of a data breach.

Question 11

What are the risks of poor data management? List them.

Answer 11

• Fines
• Loss of client trust/Reputation
• PII Claims
• RICS Disciplinary Action

Poor data management can have significant legal and reputational consequences.

Question 12

How should data be stored and disposed of?

Answer 12

• Stored securely
• Retained for only as long as necessary
• Disposed of securely

Proper storage and disposal practices are essential for data protection.

Question 13

What is the benefit of Cloud Based Systems?

Answer 13

• Backed up securely
• Restricted Access
• Convenience
• Environmentally friendly

Cloud systems offer various advantages for data management.

Question 14

What is the meaning of a Non-Disclosure Agreement?

Answer 14

• Legally binding contract to protect confidential information
• Ensures confidential information is not disclosed to third parties

NDAs are common in business to safeguard sensitive information.

Question 15

When might an NDA be used?

Answer 15

Common during tendering, sharing project details with suppliers

NDAs help maintain confidentiality in competitive situations.

Question 16

What’s contained within an NDA?

Answer 16

• The information to remain confidential
• Purpose
• Terms & Conditions
• Duration

These elements outline the scope and limitations of confidentiality.

Question 17

What are the penalties for non-compliance with GDPR?

Answer 17

• Tier 1: up to £8.7m or 2% of annual turnover
• Tier 2: up to £17.5m or 4% of annual turnover

The fines vary based on the severity of the violation.

Question 18

Why would you use in-house data over BCIS?

Answer 18

• Greater ability to filter projects
• Access to key information
• Bespoke range

In-house data can provide more relevant insights for specific needs.

Question 19

What are the risks associated with using BCIS?

Answer 19

• Lack of accuracy
• Lack of scope detail
• May not be entirely reflective of the market

BCIS data may not always align with current market conditions.

Question 20

How would you protect data/information? List the methods.

Answer 20

• Restrict communication
• Password protect files
• Sign NDA
• Encrypted Files

These methods enhance data security and confidentiality.

Question 21

What is an information barrier and what needs to be in place before this can be established?

Answer 21

• Separation of individuals or groups
• Informed consent from all clients

Information barriers help manage conflicts of interest.

Question 22

What is informed consent?

Answer 22

Ensures individuals agree to how their data will be collected, used and shared

Informed consent is a fundamental principle of data protection.

Question 23

What is an example of data being processed?

Answer 23

• Data being collected
• Stored
• Used
• Shared

These stages illustrate the lifecycle of data processing.

Question 24

How could data be breached? List the methods.

Answer 24

• Cyber Attacks
• Loss of equipment
• Employee Mistake
• Hacking

Understanding breach methods helps in developing prevention strategies.

Question 25

What document did RICS publish regarding **Social Media**?

Answer 25

Use of Social Media: Guidance for RICS Members (V1) ## Footnote This guidance helps members navigate social media use responsibly.

Question 26

Why may RICS **Investigate** a social media post?

Answer 26

* If discriminatory * If dishonest * If abusive * If threatening ## Footnote RICS maintains professional standards through social media oversight.