Data Management

Question 1

What is the Data Protection Act 2018?

Answer 1

It is the UK legislation for the implementation of the EU’s GDPR regulations.

Question 2

What are the key Principles of the Data Protection Act 2018?

Answer 2

1. Data should be used fairly, lawfully and transparently.
2. Used in a way that is adequate, and limited to its intended purpose.
3. Is retained for no longer than is necessary.

Question 3

How long would you keep data?

Answer 3

Data should only be kept for how long the data is required. For example….

1. Project information I would store for how long the information may be required, and therefore would depend on the liability timeframe from signing underhand or as a deed.
2. For external CV’s these should be deleted as the recruitment process is over.

Question 4

What are a persons rights under the Data Protection Act?

Answer 4

There are 8 rights:

1. The right to be informed.
2. access.
3. rectification.
4. to erasure.
5. to restrict processing.
6. to data portability.
7. to object.
8. Rights of automated decision making and profiling.

Question 5

Who are the key persons outlined within GDPR?

Answer 5

1. Controllers: determines the purpose and means of processing data
2. Processor: processes data on behalf of the controller
3. Data Protection Officer: ensures compliance with data laws

Question 6

How do you ensure you are following the data protection act?

Answer 6

1. They should only retain data they need to perform their day-to-day operations.
2. hold the data securely.
3. keep the information up to date and delete information they no longer need.

Question 7

What does BCIS stand for?

Answer 7

Building Cost Information Service

Question 8

What is SPONS?

Answer 8

SPONS is a price estimating book for material/labour/plant costs.

Question 9

What sort of data does the Data Protection Act cover?

Answer 9

Personal data

Question 10

What is the penalty for breaching the data protection act?

Answer 10

For breaching the Data Protection Act, a fine of up to £17.5 million or 4% of the organisation’s annual worldwide turnover, whichever is higher, can be imposed.

Question 11

Why do we use the midpoint as the basis for inflation uplifts?

Answer 11

Typically, most items will be procured by this point.

Question 12

What is GDPR?

Answer 12

The General Data Protection Regulation (GDPR) is a legal framework that sets out how personal data must be collected, used, stored, and protected, ensuring individuals’ privacy rights are upheld.

Question 13

What is your firms data management guidelines?

Answer 13

We are encouraged to maintain an organised filing system and how long to keep data for.

Question 14

Are you familiar with the freedom of information act?

Answer 14

UK legislation that gives the public the legal right to request information held by public authorities.

E.g. Government departments, Local authorities, NHS, Police etc.

Question 15

How long can you keep data?

Answer 15

There is no specific maximum duration for holding personal data. For as long as it’s necessary, which is typically 6-12 years for us depending on the contracts attestation.