6.1 Security Principles

Question 1

The three key principles of data security are protected in what legislation?

Answer 1

Data protection Act (2018)

Question 2

What does Confidentially mean?

Answer 2

Information should only be accessible by individuals or groups with authorisation

Question 3

How can an organisation uphold confidentiality?

Answer 3

Protection measures for sensitive data such as:

Usernames

Passwords

Permissions can limit who has access to the data

Question 4

What does Integrity mean?

Answer 4

Information is maintained so it’s up-to-date and fit for purpose

Question 5

How can an organisation uphold Integrity?

Answer 5

By carrying out regular data maintenance to update information

Record locking to be used if storing data is on a spreadsheet or database so only one person can edit at a time

Record locking: prevents data from becoming incorrect

Question 6

What does Availability mean?

Answer 6

Information available to individuals and groups who have authorised access to it

Question 7

How can an organisation uphold availability? For staff

Answer 7

Staff should have the correct privileges so they can easily access data

Data can be stored online for remote uses e.g cloud storage

Data kept safe from unauthorised access so:

Staff should not make additional copies of information as it could be lost or stolen