Monday, 9 June 2014
P3, M2 issues related to the use of information
The 8 principles: https://drive.google.com/file/d/0B9sBbAgbLMljaXJjcm5NMFVXUmM/edit?usp=sharing
Legal issues
The legal issues are that there are acts in place to keep information secure. These acts are put in place in a company by a data commissioner. What the act covers is data about the data subject. This would be personal data about them which could be their date of birth, address, bank balance, criminal records etc. The data user is someone who can look at the data but cannot edit or copy it. The data controller however is the person who ask for permission for data to be collected about the data subject and stored. They also decide what data should be collected.
You can have personal data which is very sensitive (sensitive data). This data, and other personal data, cannot be shared. Personal data can only be shared for specific reasons. Those reasons are if the police need to see for any recent convictions or if a religious school wants to know your religion.
The acts are the Data protection act, Freedom of information act and the Computer misuse act.
The Data protection act is covered from the top to here.
The Freedom of information act is where any data collected about you can access or even have a copy of. A example is that when you go to a job interview you can ask for a copy of the notes that the interviewer took about you. This would help you find out the good parts about you but also see if the interviewer was bias.
This could effect the company if the information that is given to the data user is harmful in any way. This is because if the data user finds information that is harmful then the company can get sued which will give the company a bad look which would be for being judgemental. This isn't good as any potential employees will be lost and the company may also loose staff as well. The current staff would leave because of them not wanting to be with a bad company.
However when a company or individual want information about from the public authority (Police, NHS, colleges and schools) can refuse to give information if it is not under the act or it can damage any interests.
The computer misuse act covers 3 parts. Unauthorized access to computer material, unauthorized access with intent to commit or facilitate a crime and unauthorized modification of computer material.
Unauthorized access to computer material is where a person gains access to someone's account. No matter what you do you are breaking the law and will be in prison for 6 months and get a big fine which has to be paid. Even if you did not move, delete, copy or do any damage but just looking at their files then that's when you go to prison.
Unauthorized access with intent to commit or facilitate a crime is where as well as gaining access to someone's account but instead of just looking at their files you decide to do a crime which would be to copy the files for yourself or getting into their bank account and taking all of their details or even to send some cash from the account o yours. This will give you 5 years in prison and even bigger fine which has to be paid.
This would effect the company because if the companies CEOs computer is accessed and then any personal files or files that are critical to the company is lost or changed, will create havoc to the company. Any files that get out to the public will give the company a bad look and will make the public avoid them. If this effect lasts for a long time the company will fail and become bank rupt.
Unauthorized modification of computer material is where you gain access to someone's account and you change or delete the files that belong to them or even do this to the companies files. Its also illegal to intend to give someone else a virus however it isn't illegal to write your own. Its not wise however to do so. This carries 5 years in prison and a hefty fine.
Ethical issues
The ethical issues are that companies will make a code of practice so that when anyone uses the computer there will be rules on how it is used. The code of practice also can state who has and hasn't got access to the computers in the company.
The problems of using e-mails in a company is that e-mails is can sometimes contain bad things. Companies will set up a rule that only a certain amount of personal e-mails can be on your company e-mail. The e-mails which are sent from that account cannot be threating or harassing but also cannot be spamming. These things can get you band from using or viewing e-mails.
How e-mails can affect my company is that if a customer receives a inappropriate e-mail then this will give my company a bad look. This is because the customer will tell other relatives and friends about the e-mail which then will make them avoid the company. The impact from this is that if they tell other friends then this will make a knock on effect and the company will start to lose money and be less respected by the public.
The problems with the use of the internet in a company is that internet can be used in different ways and sometimes it can be used to do unprofessional things inside a companies network. What a company would do is that the company will set up that a filter will remove any harmful results from internet searches. Also the company will also make sure that any banned sites cannot be accessed. In a lot of companies will also measure everyone's internet usage. Some companies will give people usage limits and once the limit is reached they will not be able to access the internet any more until the usage is reset.
How this will effect the company is that if a worker tries to cause any harm on the internet then the company will get the blame for it. If a company gets blamed for something then these will leave a permanent scar and later cause the company to be avoided. Thus losing money and respect by the public.
Whistle blowing is a issue for most co workers but also a issue for most companies. This is because whistle blowers are considered by other people as trouble. It is a problem for companies because they will have to protect the whistle blower from other people. However whistle blowers aren't always the best because sometimes they will point out problems which have been discovered by another person or department within the company.
Operational issues
Security of information, Backups, Health and safety, organisational policies, business continuance plan, costs, impact of increasing sophistication of systems.
Security of information. The issues with the security of information is that the IT support department is expected to keep its information safe. In a company it is management which can only decide who can update or look at the data.
How this will effect the company is that if any information is compromised then any registered customers will be informed about this, which would cause them not trust the company, but also this will cause a lot of hassle for the customers as they will have to do things to prevent fraud from happening. This will also make customers be angry at the company making the company look bad.
Backups. It is important for a company to back up their files because this will mean that if there is a catastrophic failure in the companies system then they will have something to back up on.
How this will effect the company is that if the company doesn't back up their systems then when the system fails the company will be badly affected. If it is to sivear then the company will not be able to recover thus causing it to shut down. This will give the owners of the company along with me a really bad look.
Health and safety. It is important for health and safety to be considered in IT. The most common are with way the computer is used. For example the position of the monitor and peripherals.
Business continuous plan (BCP). A business continuous plan is where if the IT system fails then the business has a back up plan. Fareham college has a BCP where if one of the servers fail then they can acquire a new sever and use a disk to put the data onto the server. As well as a disk backup all of the data will be backed up on a server in Cemast. The way normal companies would do is that if for example one of their servers fail then the other server can still keep running so that work isn't brought to a stand still. All places would make sure that their servers are connected to more than one place and that some back ups are kept of site in case of serious problems.
The cost of managing a IT system in a company matters. This is because when a IT system is started a lot of resources are needed to keep it maintained. The cost of developing a new
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment