Chapter 2 Flashcards
What is the definition of the Copyright, Design and Patents Act 1988?
This act makes it illegal to copy software, use unlicensed software or to copy images/text without permission.
What is the definition of the Data Protection Act 1998?
The Data Protection Act (DPA) was introduced to give rights to people who have data about them stored on computer systems.
What is the definition of the Electronic Commerce (EU Directive) Regulations 2002?
These regulations cover a range of on-line activities and apply to organisations that sell goods or services to consumers on the internet or by e-mail.
Why does PL need the Copyright, Design and Patents Act?
They need it for:
- Copying images/photographs (they must own all or have license to use)
- Software licensing (fully licensed and no copies are made)
- Copying text (no copying and passing it as their own)
What do these software license types mean; Single-User license?
Single-User license:
This allows the user to load this software package onto only one machine.
What do these software license types mean; Multi-User license?
Multi-User license:
Can be purchased for installation on several machines and the software can be loaded onto the leisure centre network.
What do these software license types mean; Site license?
Site license:
The software is available to everyone with network access at the same time.
What are the groups that are involved with the DPA at PL?
- Data controller (person who collects and stores personal data)
- Data subject (staff members and customers)
- Information Commissioner (ensure they stick to the law)
Personal data should be obtained and processed fairly and lawfully (DPA Principle)
Personal data is collected by PL during registration. Terms and conditions need to be available.
Personal data can be held only for specified and lawful purposes (DPA Principle)
The data controller at the leisure centre must supply details about the data that will be collected and what it will be used for when registering with the Information Commissioner.
Personal data should be adequate, relevant and not excessive for the required purpose (DPA Principle)
PL would need personal details of the customer so that they can be contacted. Date of birth will also be relevant (for membership type). It is not necessary to know sensitive information (religion or criminal record)
Personal data should be accurate and kept up to date (DPA Principle)
PL would give the customer the option to check the accuracy and update their membership details online.
Personal data should not be kept longer than necessary (DPA Principle)
If customer membership expires then their personal details should only be kept doe a reasonable time.
Personal data must be processed in accordance with rights of the data subject (DPA Principle)
PL must supply the customer with details of any data they have stored about them and they need the option to correct or update this data.
Appropriate measures must be taken against unauthorised access (DPA Principle)
PL must ensure that their system has adequate security measures in place to prevent unauthorised access of this data. It also needs to be backed up to prevent accidental loss.
Personal data cannot be transferred to countries outside the EU unless the country has similar legislation to the DPA (DPA Principle)
PL must not share or transfer any of their customers data with organisations unless that country has similar DPA in place.
What are the typical personal data required?
- Member Title
- Full name
- Address
- Postcode
- Gender
- Date of birth
- Contact phone numbers
- E-mail address
What is the definition for validation?
Validation checks that data entered into the system is reasonable and sensible.
What are the validation methods?
- Presence check (nothing has been left blank)
- Data type check (everything is the correct info & format)
- Length check (entered value is correct length)
- List box (enter dates and times of bookings)
- Format check (ensures it has a particular format)
What is the information PL must provide on website (E-commerce)?
- Trading name
- Geographical address
- Contact details (including e-mail)
- Details of any entry in a trade register and registration number
- Details of any supervising authority or governing body
- VAT number, if applicable
What is the information PL must provide when a transaction is taking place (E-commerce)?
- Different steps to follow to complete a transaction
- Whether or not the completed transaction with be saved and continue to be accessible to customer
- Correction facility (correct input errors before order)
- Failure to prove a correction facility allows customer to withdraw their order
- Terms and conditions are applicable to transaction
- A receipt for order
What are the typical transactions carried out by PL?
- On-line registration
- Booking classes
- Entering for events and competitions
- Logging onto personal profile
