Data Management Level 1

Question 1

Methods of collecting and storing data?

Answer 1

Emails, letters, questionnaires, surveys, cloud storage

Question 2

Whats your online tendering system called?

Answer 2

We have recently got an online tendering system. However i work in a Trust and we have our own procurement team, so we send the information over to them and they upload and collate responses and send back to us.

Question 3

GDPR?

Answer 3

The general data protection regulation is a regulation in EU law on data protection and privacy in the EU.
Gives individuals more control over their personal information

Question 4

What kind of information do you store?

Answer 4

Sensitive information, tenders and client details.

Question 5

What data systems do you have?

Answer 5

Planet systems, MICAD, RICS, ISURV, Oracle, Tendering Systems.

Question 6

How long do you have to respond to a freedom of information request?

Answer 6

20 working days

Question 7

How do you handle a freedom of information request?

Answer 7

Personally we gave a team who deal with FOI requests. However if i did have to deal with one

1. Release the information if i have it
2. Acknowledge that you do not hold the info
3. Transfer the request to another authority, if they have this info.
4. With hold the information by applying an exception and explain why

Question 8

What data control systems do you have?

Answer 8

Password protected documents
Cloud bases
Drives
General locked cabinets / cupboards

Question 9

What are the rights of GDPR

Answer 9

Rights of access, right to notification, right to erasure, right to restrict processing, right to data portability, right to object and the right to not be subject to a decision based solely on automated processing.

Question 10

7 key principles of data protection

Answer 10

1. Personal data must be processed lawfully, fairly and in a transparent manner
2. Personal data must be processed for specified, explicit, and legitimate purposes
3. Personal data must be adequate, relevant and not excessive
4. Personal data myst be accurate and up to date
5. Personal data shouldnt be kept longer than necessary
6. Personal data must be processed securely
7. The controller is responsible for GDPR and must demonstrate compliance

Question 11

The data management process

Answer 11

• collecting, processing validating data and storing data
• interrogating different types of data from disparate sources
• ensuring high data availability and disaster recovery
• governing how data is used and accessed by people
• protecting and securing data and ensuring data privacy

Question 12

What is the data protection act 2018

Answer 12

Controls how your personal information is used by organisations, businesses or the government

Question 13

DPA - what data should or shouldnt you keep?

Answer 13

Any personal information you keep on staff should be adequate, relevant and not excessive.
Keep eg - pay rates, payroll, sickness. Or contractors contact details for projects