What is GDPR?
General Data Protection Regulation 2018
What is GDPR for?
- “harmonise” data privacy laws across Europe
- give greater protection and rights to individuals.
What are the 8 rights of individuals under GDPR?
- Right to be informed
- Right of access
- Right to object
- Right to rectification
- Right to restrict processing
- Right to data portability
- Right to be forgotten
- Rights in relation to automated decision making and profiling
What protection was there for personal data before GDPR?
Data Protection Act 1998
Who does GDPR affect?
All companies that collect or process personal information on EU citizens regardless of where they are based
What will happen to GDPR post brexit?
Govt is working to enshrine them in UK law post-brexit
What’s the difference between GDPR and DPA 98?
- Scope; it’s a binding regulation rather than directive
- Definition of personal data; now incl location data, genetic info, online identification markers, not just personal details
- Consent policies; now you must opt-in
- data breach; now obliged to report breach
- penalties; much more severe. Previously £500k max or 1% annual turnover
What are the penalties for non-compliance with GDPR?
EU20m or 4% of annual turnover, whichever is higher
What are the 6 principles of GDPR?
1 Lawfulness, fairness and transparency.
2 Purpose limitation.
3 Data minimisation.
4 Accuracy.
5 Storage limitation.
6 Integrity and confidentiality (security)
(Accountability?)
How does your company collect and store data?
- Every month we submit tender returns to admin
- Data is taken and modelled in monthly tender reports, TPI forecasts etc
How do you use historic data for current day projects?
- I ensure it’s relevant information in terms of scope/size etc
- Use location/date indices to bring it to present day
- if I’m using it for benchmarking I hide names of the project/ensure client is okay with me using the data
Why would you use in-house data over BCIS?
As useful as BCIS is, in-house data can be very bespoke if we do the same type of building in the same place regularly (lucky GT is v big firm)
What is BCIS?
Building Cost Information Service
Cost and price information is collected by BCIS from across the UK construction industry, then collated, analysed, modelled, interpreted and made available to the industry to facilitate accurate cost planning.
What’s SPONs?
Price book for accurate price data for the UK construction industry.
How would you protect data/information?
- Information barrier
- Clean desk policy
- Take calls in private
- Password protect files
- Encrypted files
- Sign NDA
Who enforces GDPR?
Information Commissioner’s Office (ICO).
How does your company comply with GDPR?
- Training to ensure awareness
- Information audit to understand what info we have, where we store it, who shared with
- Check procedures accommodate rights of individuals (right to delete their info etc)
- have procedures in place to detect, report, and investigate a personal data breach
-
Sustainability79
-
Procurement and Tendering158
-
Design Economics and Cost Planning189
-
Construction Technology81
-
Project Financial Control and Reporting153
-
Business Planning14
-
Contract Practice151
-
Client Care27
-
Communication & Negotiation22
-
Health and Safety97
-
Conflict Avoidance, Management and Dispute Resolution20
-
Data Management17
-
Teamworking7
-
Accounting Principles and Procedures58
-
Conduct rules, ethics and professional practice134
-
Risk Management60
-
JCT DB 1669
-
Banana Skins40
-
Quantification and Costing81
-
Case Study - Questions97
-
Combination0
-
Concise Answers - Final Submission144
