4 - Legal And Regulatory Framework Governing The Storage And Use Of Global information

Question 1

4.1

What is the legislation HSA? When was it introduced?

Answer 1

Health and Safety Act 1974

Question 2

4.1

What is the legislation CDPA? When was it introduced?

Answer 2

Copyright design and patent act 1988

Question 3

4.1

What is the legislation CMA? When was it introduced?

Answer 3

Computer Misuse Act 1990

Question 4

4.1

What is the legislation DPA? When was it introduced?

Answer 4

Data protection act 1998

Question 5

4.1

What is the legislation RIPA? When was it introduced?

Answer 5

Regulations of inventory Powers Act 2000

Question 6

4.1

What is the legislation FIA? When was it introduced?

Answer 6

Freedom of Information Act 2000

Question 7

4.1

What is the legislation PERA? When was it introduced?

Answer 7

Privacy and Electronic regulations Act 2003 (amended in 2011)

Question 8

4.1

What is the legislation EQA? When was it introduced?

Answer 8

Equality Act 2011

Question 9

4.1

What does ICO stand for?

Answer 9

Information Commissioner’s Office

Question 10

4.1

What are the principles of the DPA?

Answer 10

1. Data should be processed fairly and lawfully
2. Personal data can only be obtained for clearly stated purposes
3. The amount of data collected and stored should not be more than required
4. Personal data should be accurate
5. Personal data should only be used for a purpose in which it was collected
6. Personal data shall only be processed within the rights of the data subject
7. Personal data should be protected and handled to ensure security
8. The data cannot be transferred to anywhere outside of the EU unless the country it is being sent to has the Sam remount of legal security as the DPA

Question 11

4.1

What is the HSA?

Answer 11

It lays down wide-ranging duties on employers. Employers must protect the ‘health, safety and welfare’ at work of all their employees

Question 12

4.1

What is the CMA?

Answer 12

It makes provision for securing computer material against unauthorised access or modification; and for protection purposes.
Includes:
1 and 3. Unauthorised access and modification to computer materials
2. Unauthorised access with intent to commit/facilitate a crime

Question 13

4.1 what is the CDPA?

Answer 13

It was introduced to protect the investments of time, money and effort by the people who create original piece of work

Question 14

4.1

What is the FIA?

Answer 14

It provides public access to information held by public authorities.

Question 15

4.1

What is the RIPA ?

Answer 15

It Regulates the way surveillance can be conducted and electronic communications accessed.
Does this by:
1. Hacking into suspected terrorists computers camera
2. Recording number plates outside important places

Question 16

4.1

What is the PERA?

Answer 16

It makes it unlawful to transmit an automated recorded message for direct marketing purposes via a telephone, without prior consent

Question 17

4.1

What is the EQA?

Answer 17

It protects people from discrimination in the workplace and in wider society.

Question 18

4.1

What is the ICO

Answer 18

It is an independent regulatory office in charge of upholding information rights in the interest of the public.

Question 19

4.1

What are the Impacts and consequences of breaching the legislation?

Answer 19

1. Breaching the DPA means The organisation will have to review and improve its security
2. Breaching the PERA will mean they will have to change their working practices

Question 20

4.2

Can personal data be transferred to other countries? Why?

Answer 20

Yes, only if the country it is being transferred to has the sameness level of legal security as that of the DPA. The EU cover the legal safety requirements.

Question 21

4.2

What security scheme had the USA set up? Why?

Answer 21

Safe Harbour Scheme. It gives sufficient protection for UK data to be stored and processed in the US. If the intended receiving organisation has not signed up to it then it cannot be transferred

Question 22

4.2

What will occur if a country does not have the same level of data coverage?

Answer 22

An assessor will have to see weather adequate safeguards will be enough to bring the security levels up to an acceptable standards.

Question 23

4.2

What does UNCRPD stand for? What does it include?

Answer 23

UN Convention on the Rights of Persons with Disabilities
It includes a specific recognition for the right access to information systems (article 9) as well as the right to use digital means to express opinions (article 21)

Question 24

4.3

What is Green IT?

Answer 24

It is an attempt to make IT more eco-friendly. It can effect how computers are manufactured, transported and disposed of.

Question 25

4.3

How does the UN want to reduce the carbon footprint with?

Answer 25

By considering the use of and disposal of computers and computing equipment.

Question 26

4.3

How is the government reducing their carbon footprint?

Answer 26

Through the use of cloud storage and shared services.

Question 27

4.3

What is the purpose of green IT?

Answer 27

To reduce the negative impact of IT and for climate benefits. The pressure on the ecosystem should reduce as well as pollution, which would allow us to create a more sustainable society.