Professional Issues In Computing

Professional Issues in Computing
Learning Outcome 1: Understand the impact of National and Global legislation involved in computing and information systems development.
Computers and their uses have become pervasive in today's society with new uses occurring on almost a daily basis. In general this use is beneficial;
however, as with all technology, computers may be put to the wrong use. In order to safeguard computer users in the UK there are different types of
legislation covering the many uses or misuses of Information and Communications Technology (ICT). Following is the current legislation in
computing: 1.1)Computer Misuse Act 1990 1.2)Consumer Protection Act 1987 1.3)Data Protection Act 1998 1.4)Disability Discrimination Act 1995
1.5)Freedom of... Show more content on Helpwriting.net ...
[8th November 1995] The Disability Discrimination Act (1995) is UK legislation that makes discrimination against anyone with a disability illegal. The
act states that everyone should be viewed as equal with regards to employment, education and training, property, providing goods and services, facilities
and equipment. The UK Disability Rights Commission was set up to help support the legislation and to investigate non–compliance to the act. The
Equality and Human Rights Commission's web site includes excellent resources on all aspects of equality and the law. Reference: http:/
/www.sqa.org.uk/e–learning/ITLaw01CD/page_29.htm 1.5Freedom of Information Act The Freedom of Information Act 2002 places responsibilities
on public bodies to be open and visible about their work. There are certain instances where exemptions can be made, such as national security. The
earliest freedom of information act is considered to be Sweden's Freedom of the Press Act dated 1766. Typically, the Freedom of Information act
defines the way in which government information can be made available to the public. A related concept is open meetings legislation, which allows
access to government meetings, not just to the records of them. In many countries, privacy or data protection laws may be part of the freedom of
information legislation; the concepts are often closely tied together in political discourse. The backbone of the UK Freedom of
... Get more on HelpWriting.net ...

Application Of Application And The Database
Applications seem to perform slowly when faced with a huge number of usages.
5.7.4.4.Connectivity testing
In this testing process, the connection between the application and the database is tested. The tester should check to see whether the user can store
their data in the available database. The following steps were carried out to test the connectivity:
a.Start the application
b.Open the registration field and insert required data
c.Click create account
d.Now, open the database and open the respective table
e.Check whether the data entered was stored.
f.Data entered was stored successfully and found.
5.8.User acceptance testing
This process is carried out to test the application has the required user functions. For this test, I ... Show more content on Helpwriting.net ...
Law and regulations of the nation where the app is built or launched should be properly followed. In the UK, there are laws to protect the user data
and privacy i.e.: Data protection act 1998 and computer misuse act 1990 to protect the mishandling of a computer.
Also, the developer has to ensure that the app doesn't have a negative impact on the society or environment. For the current application, there is no such
impact.
5.10.System documentation
After completing the testing of the app, we have to finalise the system documentation. After this only, we can carry out the quality assurance test and
evaluate the app.
The system documentation includes:
1.The project report
2.Maintenance documentation
3.User manual

5.10.1.Project report
This is the final report which is produced alongside the development of the application. It is the complete report and includes whole development
details of the project. From introduction, literature review of the case study, system development lifecycle to the design, developing, testing and
evaluating of the application. This report is the step by step detailed report of successful project completion.
Alongside this final report, we also have to produce maintenance documentation for the application and user manual on how to use the application.
5.10.2.Maintenance documentation
Maintenance documentation is produced to ensure that user is able to use the app. This

The Right to Privacy and Government Surveillance
First of all, it is important to know the definition of privacy, it is the right to control who knows what about you, and under what conditions. The right
to share different things with the people that you want and the right to know that your personal email, medical records and bank details are safe and
secure. Privacy is essential to human dignity and autonomy in all societies. If someone has committed a physical intrusion, or, in discussing the
principal question, has published embarrassing or inaccurate personal material or photographs of the individual taken without consent, he is invading
their right of privacy, which is in the article eight of the European Convention on Human Rights.
Moreover, you need to consider when posting online, that there are other rights that we all have. According to the article 19 of the Universal
Declaration of Human Rights, all of us have the right to freedom of opinion and expression, including the right to impart information and ideas
through any media, what it means that internet is included. The right to freedom of expression is in the article 10 of the European Convention on
Human Rights too. However, if you have a right, you have a duty. The right is not absolute. This freedom carries with it duties and responsibilities, so
it has restrictions prescribed by law which are necessary in a democratic society, in the interests of national security, public safety, for the prevention of
disorder or crime, for the protection of health or

Professional Issues
| |
Professional Issues – LegislationCandidates can bring to the assessment event any notes, textbooks, handouts or other material according to centre
rules. 1 As Network Manager you are asked to check out the e–mail traffic of a member of staff. What are the key points of legislation that you should
consider before taking action? As a network manager, when asked to check email traffic of a member of staff, the key points of legislation top
consider are the Data Protection Act (1998) is designed to protect personal data which may be contained in the emails to be accessed, so it should be
considered when accessing emails. The Telecommunications Act may should be considered as it makes it illegal for messages sent that are grossly...
Show more content on Helpwriting.net ...
In addition to any agreement which you might have signed, e.g. as a college student or as a library member, you are also subject to a particular piece
of legislation. State what it is and detail the responsibility laid down by a piece of legislation put on any user of a PC connected onto an organisation's
network. When using a network PC as an authorised user, in addition to any agreement signed with the network operator, theComputer Misuse Act is
legislation designed to protect the integrity of computer systems. The Computer Misuse Act makes the Unauthorised access to computer programs or
data, Unauthorised access with further

Types Of Computer Fraud, The Association It Has With A...
This essay will focus on describing three types of Computer Fraud, the association it has with a legalisation in UK and the effectiveness of each
legalisations for prosecution. Each fraud mentioned are associated with the categories of fraud mentioned below.
"They look upon fraud as a greater crime than theft" (Swift, 1838)
Fraud is defined by Oxford English Dictionary as "the use of false representations to obtain an unjust advantage or to injure the rights or interests of
another" (OED, 1956). Computers are an advanced aid for fraudsters to commit the act from great distances with the use of online resources.
However, people can now use smartphones, ATM's, credit/debit cards and emails, to commit fraud, thus, allowing easy access for individuals to
perpetrate fraud or be exploited by it.
A 'Get Safe Online survey' from the government included statistics indicating (All from Gov.uk, 2014):
–51% of 2000 occupants surveyed in Great Britain have dealt with online crime
–Internet fraud has caused ВЈ670 million lost during 2013–2014
–47% of individuals do not know how to report computer fraud
Action Fraud reports have shown (All from McGuire and Dowling, 2013):
–47,980 computer fraud cases were reported in 2012
–39% of computer frauds reported were online shopping and auction frauds
–Under 8% were reported to be computer software fraud
Even though these statistics are from trusted sources, the figure may be higher for online fraud because of unreported or unknown

The Computer Misuse Act ( Cma )
The Computer Misuse Act (CMA)is an act of the parliament of the UK redacted in 1990 as a measure to cope with the new technological threats. Old
traditional forms of crime such as harassment and fraud offences are nowadays often being committed electronically via computers or the internet.In
the last few years new forms of e–crime are appearing, using new technologies such as Denial of Service (DOS) attack and pishing committed by
offenders with good technical knowledge in IT. Thus, laws in our society need to be updated to deal with the new forms of crime. The CMA was
enacted after some cyber attacks, for instance the hacking attack against British Telecom (BT) committed by Robert Schifreen and Stephen Gold,
between 1984 and 1985, using conventional devices such as a personal computer, to surf the BT network after obtaining the username and password
of an IT engineer. They also had access to the personal mailbox of some members of the royal family. They were fined respectively ВЈ750 and ВЈ600
after being prosecuted. Thus,the law in the UK has been revised and, for instance, since 2006,crimes such as to attempt or achieve unauthorised access
to a computer or network to alter information, or to write and circulate a computer virus ,worm or trojan horse is punishable with a maximum of 10
years in prison. The CMA encompasses a wide range of activities including DOS attacks,but there is often much misinformation and ignorance
concerning the legislation and even on the websites

Unit 4 P5 Explain The Legal And Ethical Issues In Business...
TASK 4
(P5) Explain the legal and ethical issues in relation to the use of business information
Azadea provides a staff handbook that includes a section about the "do's and don'ts" regarding the ethical issues of the company. Legal issues relating
to Azadea are also part of the handbook. Using the information that I gathered from Azadea.
Legal Issues
Data Protection Act 1998 – Azadea stores and uses information about people. The data Protection Act protects information that are given by the
people from being misused. The information saved by Azadea on these data must be: o Used only for purposes that are stated during the collection of
the data o It must be correct and updated o Obtained lawfully and fairly o Protect from transfer to any ... Show more content on Helpwriting.net ...
Organizational Policies – Azadea have many policies to make sure that their company practices with the regard to information that can be done more
properly. This could be anything from how they oversee data to guaranteeing marketing and different business practices are reasonable and just.
(P6) Operational Issues
Security of Data – Azadea protects the database from unwanted actions of unauthorized users. Information and data are safe and azadea are taking care
of it. They do not give these documents to others without the permission of the owner. Azadea are having anti–virus software on their personal
computers to prevent the hackers to gain access to their data. Each of the employees' computers are required to have a password to access their data
and if they are disposing old computers, they are making sure that the information in that computed is clearly removed.
Health and Safety – there are health and safety procedures and regulations to prevent accidents or injuries in the workplace of Azadea. Azadea gives
workers breaks for them to make sure that they do not over–strain them. The company also joins UAE's annual fire and earthquake drills. Azadea also
installs more security guards and cameras for the safety of

P1 Explain the Personal Attributes Valued by Employers
P1 EXPLAIN THE PERSONAL ATTRIBUTES VALUED BY EMPLOYERS In this report I will be explaining personal attributes that are valued by
employers. An example of personal attributes is, self–motivation. I will also discuss three acts; Data Protection Act, Computer Misuse Act and
Copyright Act. Self–motivation is ability to do what needs to be done, without influence from other people or situations. People with self–motivation
can find a reason and strength to complete a task, even when challenging, without giving up or needing another to encourage them. Self–motivation is
really valued by employers because so you do your work and not hand in work in late. Leadership is the individuals who are the leaders in an
organization. Employers value... Show more content on Helpwriting.net ...
Respect is needed because you need to respect your colleagues at work because if do not have respect for your colleagues, you will get sacked
from your job. Respect is feeling of deep admiration for someone or something elicited by their abilities, qualities, or achievements. Planning skills
is essential because this skill will allow you to look ahead and accomplish goals or avoid emotional, financial, physical or social hardship. It also lets
you set out what you are doing before you do it. Therefore by planning your workout there is more chance of you doing it right and not mess it up.
Written numerical is brilliant because by having it, you can work with any kind of numbers therefore you will not be stuck when you have to work
with numbers. Most businesses will need employees with a sound understanding of mathematics. 3 job roles where attributes above are demonstrated:
Doctors use respect at their work because you have to respect your patient whilst helping them. Also doctors need to respect the patient's body and the
state they are in. Receptionist uses self–motivation because they need to have confident in themselves to speak to the customer. Teachers need to know
how to do independent working because when they finish from the school they need to go home and plan the next

Assignment Unit 4 Legal And Ethical Issuesfin Essay
Assignment Unit 4 Legal and Ethical issues
Legal issues
Legal issues that affect Northbrook college are:
Data Protection Act 1998: This controls the personal information that the government or organisations have of you and how it will be used. This gives
individuals the right to know what information is held about them. The Data Protection act as 8 principles;
1) Data may only be used for the purpose it is collected.
2) Data must not be passed on to other people without the consent of the person whom it is about.
3) People have the right of access to the information held about them.
4) Personal information may be kept for no longer than is necessary and must be kept up to date.
5) Personal information may not be ... Show more content on Helpwriting.net ...
The codes will certainly protect IT administrators who run the servers and will often be the first to detect misuse.
Northbrook shows the codes of practice as they welcome everyone to college despite the students abilities, background and characteristics – including
the adult's age, sex, sexual orientation, religious persuasion, racial origin, ethnic group, and cultural and linguisiotic heritage.
An organisation's policies may have a significant effect on how it treats information.
This is the equality and diversity policy of Northbrook. This is what every organisational policies should be.
Information ownership
This would prevent staff at one location accessing information held at another location even though the company would be happy for them to do so.
The department that produced the data should own every field of data in every record.
They should have the responsibility for making sure that it is entered into the computer system in a timely way, that it is correct and that it is consistent.
This links in with plagiarism at Northbrook.
Security of information and back ups
Northbrook keep all data and information stored at broad water campus in a fireproof cabinet. They have backups frequently to make sure all
information is kept safe and not lost.

Health and safety polices to abide by
Northbrook have a Health and safety page on Blackboard for all students and

Computer Access and Information Storage
Executive Summary
Computer access and information storage has drastically evolved with the increase of computer usage and internet access across a wide range of areas
including homes, businesses, schools and government departments. These changes make requirements for more specific laws to regulate the use of
computers and storage of data as well as new forensic techniques and tools to investigate such offences.
Following this, computer forensic investigators are becoming a necessity for lawyers and barristers as support in both criminal and civil proceedings.
What legislation exists in Ireland to handle computer crime?
Ireland does not have exclusive law that would deal with computer crime as such, but has two laws that can handle computer crimes. Criminal
Damage Act 1991 (the "1991 Act") deals with principal offences in section 2 and section 5 while Criminal Justice (Theft and Fraud Offences) Act,
2001 (the "2001 Act") covers computer related offences in section 9 and section 48.
Criminal Damage Act 1991
Section 2 – "(1) A person who without lawful excuse damages any property belonging to another intending to damage any such property or being
reckless as to whether any such property would be damaged shall be guilty of an offence."
While section 2 above does not call out specific reference to computer related crime, the definition in the statute regarding property does include
offences relating to data.
Section 5 – "(1) A person who without lawful excuse operates a

Computer Misuse Act By Robert Schifreen And Stephen Gold
Computer misuse Act has been enacted after some cyber attacks, for instance the hacking attack against British Telecom commited by Robert
Schifreen and Stephen Gold, between 1984 and 1985, using conventional devices such as a personal computer, to surfing in the BT network after
obtain the user and password of an IT engineer. They had access to the personal mail box of some members of royal family. They were fined
respectively with 750 and 600 pounds after being processed. Thus the law in the UK has been revised and for instance,since 2006,crimes such as
attempt or achieve unauthorised access to a computer or network to alter information, or to write and circulate a computer virus ,worm and trojan horse
are punishable with a maximum of 10 years in prison.
It seems that DOS attacks and other forms of cyber attacks are not under Computer misuse Act legislation ( misinformation and ignorance from many
sources such as some webs of IT security specialists) but after consultation with an international law firm that doubt was resolved,and Compuer Misuse
Act encompasses a wide range of activities including DOS attacks.
Personal data are regulated by United Nations and urges States to implement effective measures to ensure that information concerning a personВґs
private life does not reach the hands of person who are not authorized by law to receive,process and use it.Thus private data are protected not only by
law of States also by international laws, and concerning computer misuse

Review the Laws Related to Security and Privacy of Data
ss| | | | | | | |
Review the laws related to security and privacy of data
In this document I will be discussing the laws that are related to security and privacy of datas, I will explain how they relate to the security and
privacy of data.
Computer Misuse Act 1990
This act was introduced to prevent users hacking. This also stops them entering a computer, programs or files without authorisation, this act is in place
to prevent users to use the internet without permission to cause an act of crime and also prevents unauthorised modifications to a computer. This act
does not allow any attacks on a server as this is illegal.
Hacking into a computer is not allowed as it can disrupt the business as personal information can be ... Show more content on Helpwriting.net ...
Copyrights
This exclusive legal right that is given to the original artist to print, perform film, publish or record literary and authorize others to do so for their
material. This protects a physical expression of ideas , for example someone has an idea to write a book the content that is written in that book is
covered by the copyright act as it will be unique to the creator. You do not need to register or claim copyright, this protection is automatic as soon as
it is created. If someone steals information or wrongly sells other work or creation for their own financial benefit then this copy right act will protect
the original creator and he can claim back the money that has been gained by the person who has taken the material without permission. This protects
security and the use of private data as it does not allow anyone to take data or material without the author permission, if this does happen the user who
has taken this material can be fined and prosecuted as the products does not belong to them, the author can also decide how his material has been used
and if someone breaks his restriction they can also be prosecuted.
Open Source
This is software or material that is available with the source, this allows users to copy the material and modify the material, the reason for this is
because the creators would believe that if someone can edit the material for themselves it will be more useful to another persona and will also allow less

Computer security is very essential to proyect against the...
Computer security is very essential to proyect against the threats caused to computing system which happen because of it's vulnerability. Threat to
computing security takes place by a person, event or circumstance may be intentionally for sake of finance or unintentionally by deleting some of the
important data. A threat agent depends on method, opportunity and motivation. Method is a knowledge to attack , oppurtinity to access the necessary
information and motive behind the aatack. In olden days during 1980's and 1990's it is done for the sake of personal fame, but in 2000's it is for
financial purpose to gain profits. Cyber criminals are merging with established crime and espionage forces for the financial rewards. The misuse of...
Authentication is something which cannot be forged, lost stolen or guessed making the regular legal user to access easily. The other important tool in
computer security is cryptography which is also called as encryption whose process is to convert the data not understandable to un authorized persons.
This way it prevents unauthorized person to interpret and modify data. Cryptography is not totally a security control but it is a tool on which control
is based. Programs written for security control inturn must be protected in order to prevent access of unauthorized elements to disable their
functionality.For a successful computer security programs must meet the three requirements called completeness, exactness and correctness.
Completeness meeting all the requirements, exactness in performing the operation asssaigned to it and correctness in meeting the purpose of it's
design.Simple errors may lead to security problems there by leaking the information. a careful testing of security programs is very difficult and
infeasible as the different environments and approaches simulation is hard. Malicious code is the replacement of programs by some hostile forms
which are exact replica of the original program. This malicious code if four types called Trojan horses, virsues worms trapdoors and hacking. So
security is essential in every step of system usage like operating systems

Computer Crimes And The Criminal Justice System Essay
Around 1989, the Internet was created and with its creation and new opportunities, new ranges of crimes also emerged: Computer crimes. Conveniently
for criminals, there is no requirement for an offender to be at the scene of the crime physically, yet they achieve the same results. Due to the fact that
computer crimes involve a certain knowledge of technology, it has become an attractive field for young people. Throughout the years after the
invention of the internet, many criminal acts have been carried out by young offenders and law makers ought to quickly catch up in responding to new
threats. Thus, while it is rather timely to adopt and create new laws that criminalise certain cyber activities, the criminal justice system in England and
Wales developed various responses to young people who commit computer enabled and computer related crimes which, amongst others, include
hacking.
Computer enabled crime has been defined by Interpol as a way for criminals to take a new turn on old, traditional crimes with the advantages of the
internet and reach more victims ("Cybercrime", n. d.). McGuire and Dowling reported in a UK Home Office Research that the two most common
computer enabled crimes fall into fraud and theft, specifically in the financial sector (2013, p.4). Similarly, computer related crimes are
"considered as any illegal, unethical or unauthorised behaviour related to the automatic processing and the transmission of data" (Kaspersen, 1995).
Since theft has been

The Law when Two Companies Merge
1A.
During the Merger of AB and YZ into MN, an issue relating to licence keys will arise because of the Copy Right Act of 1988. This is as the
software that was previously licenced to both companies has now become invalidated due to the fact it was licenced to each individual and respective
company, but not MN as a whole. Therefore any software used in the development and hosting of the database and website, will now have to be
renewed.
For the merging of the systems and newly built website, the Supply of Goods and Services Act 1982 would expect a reasonable level of quality that
someone, who is in the business would be expect from web design and database systems university graduate. The Supply of Goods and Services Act
also stipulate that we should agree to a cost that is reasonable for part time university students. This could be around 3–4k for the website and around
2k for the database integration. A time scale of around three months should also be set; this will be to allow the student to carry on with their study
while working for MN.
We should also be aware that a website made by students may not have the most secure systems employed, and a data breach could be possible. If a
data breach does happen then the impending ICO enquiry for breaking the Data Protection Act 1998, will land squarely on our shoulders. This is as the
courts will not accept our decision to allow students to become MN's data controller.
Systems should also be in place to automatically delete

Health Information Security Essay
I have taken the following from the BMA's Confidentiality and Disclosure of Health Information Tool Kit which appears to have no publication date.
Access to medical records is getting more and more complicated. There is multiple published guidance from the GMC, BMA, Department of Health as
well as many legal acts which come into force:
Data Protection Act 1998: processing of information held
Access to Health Records Act 1990: rights of access to deceased patients' records
Human Rights Act 1998: right to a private life – not absolute
Computer Misuse Act 1990: unauthorised access to computer material (using someone else's password/login)
NHS Act 2006 (England and Wales): Secretary of State for Health has the power to make regulations permitting disclosure of identifiable information...
The GMC also advises that disclosure without consent can be justified in the public interest to enable medical research.
Where serious crime is involved, the decision to disclose is fairly easy: murder, rape, kidnapping, child abuse. However, minor fraud and damage to
property would not justify disclosure. Public safety is a common area that we get involved in. Those who continue to drive with uncontrolled alcohol
dependence, day–time epileptic seizures, hypoglycaemia and other such conditions where their driving license is not valid should inform the DVLA
and if they refuse then we have a duty to inform the DVLA without consent. I always inform the patient that I am doing this.
Where there is a threat to others from a serious communicable disease eg HIV then confidentiality may be breached to inform sexual contacts.
As Nicola states information should be kept to a minimum and only to the relevant person. The default should be that the patient is informed unless
there is a reason not

Security And Confidentiality Of The Information
Security and Confidentiality of the information
Introduction
In this task, I have been asked summarise the Data Protection Act (1998) and Computer Misuse Act (1990). Also I will have to explain the ethical
issues surrounding the code of practice (when using email and internet) and information ownership and talk about the importance of backing up
information and impact of increasing the sophistication of systems. [P3]
Legal Issues – The Data Protection Act 1998 is the act to control how your personal information is used by organisations, businesses or the government.
All businesses, organisations and even the government must abide by this Act so that personal information must be used lawfully and fairly this means
that everyone who has access to your personal information must use it for limited, specifically stated purposes and must inform the corresponding
person of how his/her personal information is going to be used.
Below are some of the strict rules organisations/businesses must follow when in possession of your personal information:
Used in a way that is adequate, relevant and not excessive.
Accurate.
Kept for no longer than is absolutely necessary.
Handled according to people's data protection rights.
Kept safe and secure.
Not transferred outside the UK without adequate protection.
The Computer Misuse Act 1990 is the act that makes the unauthorized access to a computer or network systems illegal. Force entry or hacking is
illegal because when an

Business Ethics : Legal Types Of The Data Protection Act
Dear Ms Lupin
I was informed that you would like to see some of the legal requirements you might need to start the business, but to do so, you must first be informed
with what legal requirement means, it is Law you must follow and there is 2 types
Criminal – this is when you breaking one of the legal requirement severely and therefore they will go to prison
Compliance – compliance is when breaking one of the legal requirement but it isn't to severe e.g. in the data protection act, misspelling someone's name
by accident can lead to just a fine instead of imprisonment.
the legal requirements that are needed include:
Data Protection Act (1988)
Fraud Act (2006)
Copyright Design and Patent act (1988)
Computer Misuse Act ... Show more content on Helpwriting.net ...
A simple way to make your customers safe, give them a password to remember so that every time a email is sent to them, attach the password so that
they know whether it's real or fake (to prevent phishing)
Copyright Design and Patent Act (1998): the copyright design and patent Act protects anything that was made up from a person such as the name of
the company so that it does not get stolen and abused, for example if a company where to take on a name of another successful company, they can
easily fool people to think that they are the original, meaning that this act allows the ownership of things such as the name of the business or what they
might be selling. This is very common with big brands e.g.

Computer Misuse Act (1990): the act protects against hacking, people having unauthorised access to the computer and viruses. This means that they
will need to be secured to protect the data, a common way of setting up good security is to hire hackers to hack the information to allow the business
to spot weak spots and reinforce the protection and repeat until the hacker is no longer able to hack in. To comply with it, just monitor the computer to
report any suspicious behavior and report it immediately because it could end up being very serious and potentially becomes a criminal Act therefore
could be extremely severe.
Telecommunication Regulation (2000): this act is one of the most important act for this business as it

Current It Security Threats To Organisations Case Study
Current IT security threats to organisations
Phishing
Posing to be someone else either through email to gain sensitive information
Bring your own device to work
To attacks, leaks or viruses towards the company. Bringing your own device causes many issues for one, security: The employee doesn't normally have
as much security if any on their device leaving it possible. This is a disadvantage as the company will have to pay a large amount of money to get
security on the device. To prevent this you could use Anti–virus/malware software, Encryption, passwords and remote wiping. If the item gets broken at
work the person might have pay for it to be repaired or replaced which will cost the employee money and they will not be happy. Businesses ... Show
more content on Helpwriting.net ...
This attack demanded $300 via bitcoin, and $600 if not paid in 3 days. This worm encrypted your files and wouldn't decrypt them unless you paid.
If you didn't pay in 7 days, then your files will be deleted. It did this by exploiting a vulnerability in Windows, which has been patched now. The
main reason attacks like these work, is because people don't update their software. The main reason for these updates are to patch vulnerability's in
windows. How this can be bad for companies, is if the companies do not pay for new computers and leave them running out dated software which can
be broken into easier. Ways companies can prevent this is to update their software and not give in and pay the attackers.
Active attacks
An active attack is a network exploit in which a hacker attempts to make changes to data on the target or data on route to the target.
Passive attacks
A passive attack is a network attack which a system is monitored and sometimes scanned for open ports and vulnerabilities. The purpose of these attacks
is to monitor their accounts and monitor what they are doing on their computer.
Dumpster diving
Dumpster diving is looking for treasure in someone else's trash the information found in this can be used to carry out an attack on a computer network
War driving
War driving is also called access point mapping. War driving you will need a vehicle, a computer and a

Dubious And Liability Under Data Protection Act 1998
1. Dubious and Liability under Data Protection Act 1998
Dubious, as a company's new Trainee, inadvertently posted huge amount of customers' personal information on a public website. His unauthorized
access to company document, particularly the confidential information, absolutely went against the regulations in the Data Protection Act 1998 (DPA
1998). As an organization that is responsible for data controlling and processing, the company should be involved in this information breach issue. The
DPA 1998 provides a whole complete legal framework to safeguard the basic human right related to their personal and sensitive personal information
privacy as well as place duties on those data controllers. Therefore, several substantive elements should be clarified to declare the company's guilty as
well as Dubious'.
The infringement of the right to privacy that protected under the DPA 1998 will be regard as "personal data", which could be the first need to be
explored. In Section 1(1) DPA 1998, personal data is defined as data relating to a living identifiable individual. Actually it covers not only digital data
but also those data stored on hard copy in filing systems including other certain relevant information. It is important to note that, as to the aspect on the
ability to identify an individual, any data held could be determined personal data through partly either the data held itself or other non–critical
information, such as any expression of opinion or the assessments

Ethics Of The Staff At Fractal Entertainment
Introduction
Fractal Entertainment has requested the creation of this project in order to keep their employees informed and up to date on professional bodies
relevant to them, current legislations, code of conducts and the current issue of ethics in computing. In this project I am to provide in depth insight to
the topics mentioned, and to provide accurate information for the benefit of the staff at Fractal Entertainment. Professional Bodies
What is a Professional Body?
A professional body is an organisation made up of primarily professionals, who provide many functions and benefits to these professionals in their
professions. Some professions explicitly need their professionals to be part of a professional body, as they require their professionals to be registered or
have a licence to practice their profession. This helps professions to ensure that their professionals are conducting their jobs correctly.
Professional Bodies have a lot of functions:
Providing professional exams to members
Having their own professional journals/magazines
Giving professionals ways to meet and discuss their particular profession through means such as forums
Having a set code of conduct for their members
Dealing with complaints and discipline against professionals
Providing wider access for everyone to get into professions that interest them
Aids students and current workers for better careers
Professional bodies usually require either a one off payment or a yearly

Uk And Eu Legislation For Address Cybercrime
UK and EU Legislation to address Cybercrime
Abstract – Abstract – in this paper, we present an introduction to cybercrime, and review UK and EU legislation regarding computer crimes.
This paper will briefly address UK and EU laws that have been created to deal with cybercrimes. Numerous writers, to policymakers and law enforcers
have called for stringent and innovative laws to prevent and punish computer crimes. Others want legislation to make computer software companies
liable for damages caused by their software–security failures. Responding to the challenges of cyber–crime has indeed engendered a cacophony of ideas.
Keywords – cybercrime, cybersecurity, cyber–attacks, UK and EU laws, Hackers, denial–of–service
1. Introduction
Computer–crime or commonly referred to as Cyber–Crime or ICT Crime (van der Merwe, 2008, p.61) is a new type of criminal activity which started
showing its ugly head in the early 90 's as the internet became a common place for online users worldwide. This is due to the fact that computer
criminals now have the opportunity to gain access to sensitive information if they possess the necessary know–how. This generally causes huge
problems in the economic sphere and results in companies and individuals having to take costly steps to ensure their safety and reduction in
commission of cyber–crime (Gordon, 2000, p.423). Cybercrime or also known as computer crime can be defined as any criminal activity that involves a
computer and can be divided into two

Questions On Computer Misuse Act
EECN520 Threats and countermeasures Coursework 1 – Computer Misuse Act Businesses, Governments and academic institutions are becoming
needy on the internet in their day to day undertakings. Similarly, consumers are increasing their use of e–commerce and online shopping more. This
indicates increasing openings for hackers to intercept and disrupt activities. Hacking became an issue in the 80's and law enforcements agencies
couldn't find a way stop this threat. They were not causing any physical damage but all they did was just log into systems without the users' permission.
In the 80's it was hard to justify which law hackers where breaking. To tackle this issue a new act was passed called the 'Computer Misuse Act 1990'
which created different categories of offences. The first category is the accessing of computer material without permission, e.g. looking at someone
else's files. For someone to fall into this category there must be intent to access data or files stored on the computer, furthermore the person accessing
the computer without permission must know that the access is not allowed. The second category is the accessing of computer material without
permission with intent to commit further criminal offenses, e.g. trying to hack into you bank and adding more money to your account. The third
category is the altering of computer data without permission, e.g. changing the amount of money in your bank account. According to the Computer
Misuse Act of Scotland,

Unit 4 P3 Business
Information Information is made from Data that is numerical which is changed and used to make it seem sense. For an example train timetable, the
number of trains and how much it weights. Data Data is facts and numbers that hasn't been modified or analysed for example times and numbers.
When data is by itself it has no meaning to it however information by itself does have a meaning. Primary Primary data is data which your business
or you find and gather data to analyse. By you or the business finding the data this makes it primary because the data belongs to you making it
original. The different ways to gather data is surveys and interviews by collecting data like this makes it original and reliable. Secondary Secondary
data is data that isn't... Show more content on Helpwriting.net ...
When information is stored, if it about a person then it isn't covered by the same act it then becomes data protection act. The information to the
public is free to learn and access but it's not free when requested for physical copy. If information is requested and cannot be accessed public bodies
will give reasons why they cannot release the information and have a valid reason. If the information individual wishes to accessed is fully denied, then
they have the right to appeal and have the outcome

1. Computer Misuse Act 1990
The computer misuse act was created to make it an offence to access a computer that someone is not entitled to use.
Offences that are covered by the act include hacking, accessing computers without the authority to do so and purposefully installing malware.
The act makes it illegal to access or to attempt to access a computer system without the correct authorisation and If the hacker tries to get into the
system but is unsuccessful they can be taken to court for this.
The act introduced three criminal offences:
1.Accessing computer material with authority.
2.Access with the intention to commit or facilitate commission of further offences.
3.Unauthorised modification of computer materials
In 2006 the computer misuse ... Show more content on Helpwriting.net ...
Freedom of Information Act 2000 and Freedom of Information (Scotland) Act 2002
The freedom of information act covers the right of the people to look up information that would be held by a public body.
All institutions must have a procedure if a member of the public wishes to look for a document ie enquire through a webpage.
The Freedom of Information (Scotland) Act 2002 covers public information that falls under the influence of the Scottish parliament.
The act has a wide reach however there are some documents that cannot be asked for by the public for example the public cannot look a files from the
ministry of defence for the sake of national security.
The act is a controversial one, because most public bodies would prefer to work in secret however these requests have been turned down by the
information commissioner for Scotland who is responsible in such cases.
There is another act that works similarly to this it is known as the Environmental Information Regulations 2004 which allows the people to gain
information on the environment.
9. Copyright, Design and Patents Act

The Data Protection Act Of The United Kingdom Of Great...
When a company is either extracting the information they have obtained or using it to optimise their performance there are several legal acts they need
ensure they are not breaching by doing so. These are the Data Protection Act 1998, Freedom of the Information Act 2000 and the Computer Misuse act
1990.
Data Protection Act 1998
The Data Protection Act 1998 (DPA) is an Act of Parliament of the United Kingdom of Great Britain and Northern Ireland which defines UK law on
the processing of data on identifiable living people. It is the main piece of legislation that governs the protection of personal data in the UK.
(https://en.wikipedia.org/wiki/Data_Protection_Act_1998)
(https://www.gov.uk/data–protection/the–data–protection–act)
The Data ... Show more content on Helpwriting.net ...
It provides individuals or organisations with the right to request information held by a public authority. The public authority must tell the applicant
whether it holds the information, which it must supply within 20 working days, in the requested format.
This act ensures that:
–No one needs reasoning behind why they are requesting the information; however a reason not to give them the information is required.
–Everybody has the right to access their own official information, however all information should be kept private.
Anyone who works with electronic data or information is liable to comply with this legislation
–The computer Misuse Act is designed to protect computer users against wilful attacks and theft of information
–Offences under the act include hacking, unauthorised access to computer systems and purposefully spreading malicious and damaging software
(malware), such as viruses.
–Unauthorised access to modify computers include altering software and data, changing passwords and settings to prevent others accessing the system,
interfering with the normal operation of the system to its detriment.
–The act makes it an offence to access or even attempt to access a computer system without the

P5 Explain The Legal And Ethical Issues In Research
P5: Explain the legal and ethical issues in relation to the use of business information.
In this task I'll explain the ethical and legal issues in relation to the use of business information for the company I have chosen, TESCO.
Legal issues.
Data protection Act 1998
This means that all using data are collect ted by legislation. These data are protected against exposure such as personal information otherwise they
will break the law.eg a doctor can't share his/her data to any client or anyone else who doesn't involve unless there is an emergence or critical issues
like crime.
Picture 1
This part dealing with accessing of computers for preventing stealing from people or hacking and use them for their advantages. ... Show more content
on Helpwriting.net ...
Whistle blowing
In this Tesco employees, Officer and director all respect the code and Tesco encourage them to observe any bad event which they will observe to the
executive team of management, human resources or legal department.
P 6: explain the operational issues in relation to the use of business information.
Security of information.
Every officer, director, agent, employees and other representative has some of the confidential info to access. An example of confidential information
of Tesco are like Tesco equipment or tools, financial data, price lists, legal matters, business intense and plans, trademark as well as software. Technical
and commercial information receives the confidential from 3rd parties such as partners, customers, and suppliers. So, all employees in Tesco should
sign the confidential when they start the work with Tesco company.
Picture 9
Backup copies
In case there is something went wrong, and all data has lost. They prevent the problems against losing with customers almost million pounds.
Picture 10

Health and

P5 вЂ“ explain the legal and ethical issue in relation to...
Legislation/PolicyExplanationHow Tesco complies Data Protection Act 1998The data protection act protects people who are identifiable from their
information and data being shared. The information will be bank details, address and billing and some other personal details.Information is collected
from club card registrations and application forms. They cannot publish these details and will be securely stored on a database. However the
information can be used by Tesco for market research which may include taking part in surveys. Freedom of Information Act 2000This act creates a
public 'right of access' to information held by public authorities.Tesco hold certain information that can be accessed by the public. At a fee of ВЈ10 they
can... Show more content on Helpwriting.net ...
Tesco will have a secure password protected database which data is stored and a record system of who has accessed or used the database to limit
breaches. Back upsHaving a backup of data is important because if the data becomes corrupted or lost you will have it copied and stored so that
you will still have it in future for if something goes wrong.Tesco will have a secure back up of information for if the existing data becomes
damaged or gets lost. Backups can either be paper based or on another electronic storage system like a computer database, both will have to be kept
safe and secure. Health and SafetyEmployers must provide a safe working environment and equipment / uniform / signs to ensure the employees
are as safe as they can be. Customers are also provided with a safe store to shop in and measures are put in place to ensure everyone's safety in kept
in tact Tesco provide uniform for its employees as well as signs and signals for particular areas for the safety of customers and workers. If standards
are not met Tesco could face fines and other disciplines. Tests are regularly taken to ensure Tesco are up to date with laws and regulations for example
the fire alarm system will be tested every so often. Continuance PlansThis is a document that has all the information a business needs to stay running if
any serious events occur. In Tesco's case it was the horse meat incident. The next steps

Data Protection Act 1998 : The Eight Principles Of The...
Data Protection Act 1998
This legislation protects people's data and information stored on databases. Data subjects are people whose personal data is stored, the rights given to
data subjects are: right of subject access, right of correction, right to prevent distress, right to prevent direct marketing, right to prevent automatic
decisions, right of compliant to the information commissioner and right to compensation.
The eight principles of the data protection act that companies need to adhere to are:
1.used lawfully and fairly
2.used for specified purposes
3.used inadequately or excessively
4.used accurately
5.not kept longer than necessary
6.handled according to data subject's data protection rights
7.ensure safety and security of data
8.ensure adequate protection if transferred outside the European Economic Area when companies want to use personal data and share data with third
parties they have to ask permission from the person whose data they wish to use. On e–commerce sites they can do this by presenting tick boxes when
a user enters their details.
This act was introduced to deal with problems caused by hacking. It helps organisations deal with hacking by making the following offences:
unauthorised access to computer material, unauthorised access with the intent of facilitating or committing a crime, unauthorised modification of
computer material, and supplying, making or obtaining anything that can be used computer misuse crimes.

Unit 23 M2
P3/m2–explain the issues related to the use of information
In p3/m2 I will be talking about the following:
–The data protection act
–Copyright, Design and patents act
–Digital economy
–Computer Misuse act
The data protection act
The data protection act is a law on the processing of data in identifying people. The law does not
mention privacy; however it was enacted into British law with the EU data protection directive which
is where members would have to protect people rights and freedom of protection with personal
data. This allows people to control their own personal data but the act mostly does not apply to
domestic use. Companies also had to oblige by this law. So all of a company's personal data must be
kept to only ... Show more content on Helpwriting.net ...
Anonymous data or aggregated data is not affected by the act providing it has not been used

against the rules of the act. The act however only applies to data which only is held or has the
intention of being held on a computer system, database or relevant filing system. Data in something
like an address book can also be considered as relevant filing system, because its not on a database
does not mean that it does not class towards the law of the data protection act.
Copyright, Design and patents act.
This law allows the owners of the work they created to copyright it so know one can copy the work.
This law stretches across from hardware like computers to music and CD's. This also applies for work
submitted by students to teachers. If a student has copied another student directly they can be in
trouble for plagiarism which is breaking this law. Copyright is everywhere. Copyright applies to
literally nearly everything man made by a company. something multiple companies will make like for
example phones or computers but they will all be different in some way to not be invialation of the
copyright law.
Digital economy
Digital economy as a whole has changed a lot throughout history. Digital economy in the aspect

Computer Misuse Act
In this article the Computer Misuse Act 1990 was raised. It states that a teenage from Dorset England. Aaron Caffrey aged 19 had apparently sent a
virus to another person computer while they were at work at America's bigger port. The convicted was accused of hacking into the system and sent a
virus use cause the either network of computers which caused them all to crash.
The law that he had broken was the Computer Misuse Act 1990 the law states the following:
"The Act contains three main offences which are categorised under the following Sections:
Section 1
1(1)A person is guilty of an offence if
a)He/she causes a computer to perform any function with intent to secure access to any program or data held in a computer
b)The ... Show more content on Helpwriting.net ...
3(2)For the purposes of subsection 3(1)b above the necessary intention is an intent to cause a modification of the contents of any computer and by so
doing
a)To impair the operation of any computer
b)To prevent or hinder access to any program or data held in any computer or c)To impair the operation of any such program or the reliability of any
such data.
3(3)The intention need not be directed at
a)Any particular computer
b)Any particular program or data or a program or data of any particular kind or c)Any particular modification or a modification of any particular kind.
3(4)For the purpose of subsection 1b above, the requisite knowledge is knowledge that any modification he/she intends to cause is unauthorised.
3(5)It is immaterial for the purposes of this section whether an unauthorised modification or any intended effect of it of a kind mentioned in subsection
(2) above is, or is intended to be, permanent or merely temporary. (http://www.geek.org.uk/~arny/cmuse.html) "
So looking at the act above we can see that The Computer Misuse Act was created to prevent unauthorised access to computer systems and also to
deter the more criminal elements in society from using a computer to assist in the commission of a criminal offence or from impairing or hindering
access to data stored in a

Questions On Data Protection Act 1998
P3– understand the issues related to the use of information: Legal issues: Data protection legalisation (e.g. data protection act 1998) Purpose: The
main purpose of the Data Protection Act is to give all individual(s) the rights over their personal data and information. The act requires anyone who
handles an individual's personal data to agree with a number of important principles and legal obligations. All individuals are entitled upon making an
access request, to be supplied with a copy of any information held about them. The individuals also have the right to challenge the processing of their
personal data and to claim compensation if they suffer a loss or damage because of the inaccurate information. Implications: The implications... Show
more content on Helpwriting.net ...
Names Addresses Contact information Employment history Medical conditions Convictions Credit history Freedom of information act 2000: The
freedom of information act provides public access to information held by the public authorities, this therefore means that public authorities are obligated
to publish certain information about their activities and any member of the public is entitled to request this information from the authorities
themselves. This act covers any recorded information that is held by public authorities in most parts of the UK (England, Wales & Northern Ireland),
information held by Scottish authorities is covered by their own freedom of information act that was introduced in 2002 so therefore Is somebody in
England wanted some information from the Scottish public authorities then they wouldn't be able to get it so easily. Therefore are a few implications
of the freedom of information act such as the fact that all companies that hold open access information must be able to actually dispatch the information
to the person requesting it within 20 working days otherwise they would be. Therefore going against this law that was introduced in the year 2000 and
they therefore could face criminal offences for withholding information that should be open to the public. This particular act applies with a few
businesses that actually

Disability Discrimination Act 1995
Disability Discrimination Act
This act was passed in 1995. The disability act protects disabled people in:
* Employment
* Access to goods, facilities and services
* The management, buying or renting of land or property
* Education
The DDA covers a disability which people:
* Have now,
* Had in the past (for example: a past episode of mental illness),
* May have in the future (e.g.: a family history of a disability which a person may also develop),
* Are believed to have (for example: if people think someone has AIDS).
The DDA also covers people with a disability who may be discriminated against because:
* They are accompanied ... Show more content on Helpwriting.net ...
It is against the law for an employer to discriminate against a disabled person:

В· In the terms on which he offers that person employment
В· By refusing to offer, or deliberately not offering, him employment
The consequence of this that the business can be shut down or the owner can be sued or at worst put in jail.
Relating the act to the Internet cafГ©:
Relating the act to the Internet cafГ© there are certain rules, which I have to follow in order to create a successful Internet cafГ©, which meets, the
disability discrimination act.
(3) The following are examples of services to which this section and sections 20 and 21 apply
(a) Access to and use of any place which members of the public are permitted to enter;
Text Box: Firstly I must be able to provide access for disabled people e.g. wheelchairs to access the cafГ©, some sort of ramp must be created for
access. I must be able to provide wide doors to allow the access of wheelchairs preferably automatic doors. If the building has more than one floor their
must be facilities on the first floor e.g. toilets for disabled people to use.
I must be able to provide equipment, which allows disabled people e.g. blind people to access the computers and take full advantage of them. To do
this I must be able to provide a brail keyboard and

John Lewis Essay
The data protection act is created for personal information to keep secure by John Lewis or by data protection act company and they must follow
the rules that has been giving to John Lewis. For example, when customer come to John Lewis and when the customer buy's product with credit
card and that credit card must not give to any one they must keep secure or they can only give to the right person. Data protection act for John Lewis
must not allowed keep customer details for no longer 3 years and then they must delete it and they must not sell to any third party company. You must
have CCTV in your backup room where all data is there and it so if anything happened to that room or any one come to steal customer details and then
they can track it down with CCTV. The data that John Lewis get from employees or customer it need to be accurate and relevant for... Show more
content on Helpwriting.net ...
For John Lewis business they have keep all information secure to add strong security to the data room where they keep all information, the best way
they could add CCTV and finger print to door where no one can access it or the company will gain bad feedback any they could lose customers.
Finally, the company needs to have very good security because if they don't have it then hackers can easily access to any data that they want and they
can sell it to third party companies and that could get the company into big trouble because they have customer's private information in there. ii. Ethical
issues (e.g. the use of email)
Use of Email
All business has very reasonable code of conduct for example John Lewis has their own services which is related to the work and to see if
employees are using John Lewis or they use their personal email. They can you their personal email but they can only use at break times. This is just
to ensure that employees are doing their work and not spending any time.

Operational Issues In Research
LO2 Understand the Issues related to use of Information
I am going to research the issues in an information system such as Campsmount Academy. This is a secondary school north of Doncaster in South
Yorkshire.
Legal Issues
All businesses have to consider the legal issues when setting up a business, some of the acts that they have to follow to be able to run as a successful
business are; the Data Protection Act 1998, Freedom of Information Act 2000,Computer Misuse Act 1990 and the Copyright Law 1988. All these acts
are designed for the welfare of the business if they come into any trouble.
Data Protection Legislation
The Data Protection Act is a law made to protect data stored on computers or in a paper filing system. Businesses, organisations ... Show more content
on Helpwriting.net ...
Officially this is called 'making a disclosure in the public interest'. A worker can report things that aren't right, are illegal or if anyone at work is
neglecting their duties, including: someone's health and safety is in danger. Edward Joseph "Ed" Snowden is an American computer professional who
leaked classified information from the National Security Agency to the mainstream media, starting in June 2013.
Operational Issues
There are many ways that a business or organisation can prevent operational issues. The ways they can prevent issues like this is to secure information,
health and safety, cost of everything they need and state the organisation policies.
Security of Information
An operational issue for the security of information is having a backup such as a generator. The backup generator will be there for when the power
goes off. This is another backup to prevent students and staff losing their work when the system goes down.
Health & Safety
Health and safety is what business can use to prevent unauthorised access looking through the files on their computer. They can do this by adding
passwords on the computers which only allows staff to access, so that other people can't interrupt with the important documents. This will prevent easy
access to the computers due to hackers having to try and guess the password to unlock them.

Organisational

Unit 13 P4
Data Protection Act This act was brought in by Parliament in order to define the UK law on processing data. This governs the protection of personal
data in the UK. It also helps to control how an individual's personal information is used by many different businesses and organisations that may
contact them. Anyone who can be held responsible for using data must follow specific rules/guidelines e.g. data must be used fairly and lawfully, it
must be used for limited and stated purposes, and it must be used in a way that is adequate. This act replaced another legislation act that was
implemented in 1984. This act was also based on data protection. Freedom of information Act 2000 This was brought in to give the people a right of
access to... Show more content on Helpwriting.net ...
Most of the software that is used today is purchased as a one–site license. This means that only one computer can have that software installed on in at a
time. Copying or sharing this information without the use of multiple licences is seen as Software Piracy. There are many ways of preventing
software piracy. Software piracy does not only affect one individual but also can affect a large group or company. Some of the effects of software
piracy are; it reduces the funding for ongoing development efforts, it can limit the amount of jobs opportunities that are available to people, it also
allows for other unauthorised copies of software that may contain bugs or viruses and lastly it prevents the user form getting any high quality
technical support and product updates. There are too main factors/ways that can help to prevent software piracy. One way is hiding the users IP
address therefor any traces of you being seen on that website are lost and therefor you cannot be hacked. You can also download software which will
set up firewalls in order to prevent the user form getting hacked or getting a

The Data Protection Act 1998
Legislation in ICT The Data Protection Act 1998 Purpose The Data Protection Act came into force on the 1st March 2000. It was designed to guard
individual's personal data which is stored on computers or in an organised paper filing system. It is an act of parliament from the United Kingdom of
Great Britain and also Northern Ireland. The Act states the UK law on the processing of data of living people. The Data Protection Act is the key
piece of legislation that runs the protection of personal data in the UK. The Act itself offers people their rights over their personal data and protects
individuals the inaccurate use of their personal data. Description Key Principles Personal data should be processed legitimately and lawfully. The...
Personal data shall be suitable, relevant and not excessive in relation to the purpose or purposes for which they are processed. All personal data
held must be evident, and must convey adequate material for others to comprehend them. Information that is essential should be collected and
held. Records should be clear, accurate and worded in a professional matter. Any abbreviations must be agreed widely. Opinions should be clearly
distinct from matters of fact and the personal data which is sensitive must only be held if really required. Personal data should be up to date and it
should also be correct. Everyone's personal data should not be incorrect or distorted to any matter of fact. This is equally relevant to information
which is received from a third party. The source of data should always be included on records. Unauthorised shortening of names is classed
incorrect data. Personal data which is handled for any reason or purposes must not be kept for longer than is necessary. Personal must not be held
longer than is required for the reason it was initially gathered for. Personal data shall be handled in harmony with the rights of data subjects under this
Act. Individuals have a legal right to be told if the information about them is being dealt with, what the particular information is, its foundation, the
reason it is going to be processed, to who it might be disclosed and lastly the logic which is involved in any automatic decision process, for

The Protection Of The United Kingdom Of Great Brittan And...
The reason many companies's including Cadbury use these laws is in order to keep their organization running smoothly and organised, the computer
misuses act 1990 doesn't allow trespassers to use, access or alter any computer data they are not entitled in doing so. The reason Cadbury use this is in
order to keep their information safe Cadbury implement this in such as secrets or ingredients to their products must be kept safe.
The Data protection Act 1998 (DPA) is an act of Parliament of the United Kingdom of Great Brittan and Northern Ireland. This defines UK law on the
processing of data on identifiable living people. This is the main piece of legislation that governs the protection of personal data in the UK. Even
though the act itself ... Show more content on Helpwriting.net ...
This could be something related to those people or something concerning them.
Human rights act 1998 this is implemented by making sure all their staff are treated equally and have a safe working environment and also treat
their customers fairly too if they fail to do this they could be taken to court and receive a large fine. This is applied in Cadbury by making sure that
their manufacturing facilities match all of the legal requirements regarding health and safety in order to avoid try and accidents as much as possible,
this is also applied in their stores as the staff there also are in need of a safe and healthy working environment and need to treat their customers with
manors and respect as they would expect back.
The privacy act 1974 was created as a response to the concerns on how the use of computerized files might impact individual's privacy rights. The
Privacy Act of 1974 created a code of fair information practices that governs the collection, maintenance, and distribution of information about
individuals that is maintained in systems of records by federal agencies. This is implemented by Cadbury in a way which disallows anyone in having
access to individuals personal information without access.
A Whistle–blower is a person who exposes any kind of information or activity that is deemed illegal, dishonest, or not correct within an organization
that is either private or public. Cadbury backs up their information in

Devious And Liability Under Computer Misuse Act
2. Devious and Liability under Computer Misuse Act 1990
Devious, the employee of Human Resources, who gained the access to the verified account detailed information of their customer, without authority,
contravened the regulation protected by the Section 1 Computer Misuse Act 1990 (CMA 1990). Words in Section 1(1) define a person's offence with
acting unauthorized access to computer materials. The relevant activities what Devious had done are unauthorized access into the organization's system
and the important documents. It showed that Devious got the username and password to get into the organization's system, which made him to be
responsible for gaining the unauthorized access. However, it is not clear that whether Devious has engaged in any further actions, such as downloading,
duplicating, storing or blackmailing the customer, if he had done so, he would also be liable for unauthorized access with intent to commit or facilitate
commission of further offences.
One key point to analyzing this legal and regulatory issue is to explain the following two important terms. The first one is the nature of the subject
matter protected by the CMA 1990. When it comes to the object of the computer misuse offence, it is easy to reach a consensus that it is the
information that includes the confidentiality, integrity and availability of computer systems and data, such as financial information, personal
information, tax–relater records as well as trade secrets. Information should be

Professional Issues In Computing

Recommended

Recommended

More Related Content

Similar to Professional Issues In Computing

Similar to Professional Issues In Computing (7)

More from Sabine Perez

More from Sabine Perez (20)

Recently uploaded

Recently uploaded (20)

Professional Issues In Computing