Chapter 2

Question 1

What is the definition of the Copyright, Design and Patents Act 1988?

Answer 1

This act makes it illegal to copy software, use unlicensed software or to copy images/text without permission.

Question 2

What is the definition of the Data Protection Act 1998?

Answer 2

The Data Protection Act (DPA) was introduced to give rights to people who have data about them stored on computer systems.

Question 3

What is the definition of the Electronic Commerce (EU Directive) Regulations 2002?

Answer 3

These regulations cover a range of on-line activities and apply to organisations that sell goods or services to consumers on the internet or by e-mail.

Question 4

Why does PL need the Copyright, Design and Patents Act?

Answer 4

They need it for:

• Copying images/photographs (they must own all or have license to use)
• Software licensing (fully licensed and no copies are made)
• Copying text (no copying and passing it as their own)

Question 5

What do these software license types mean; Single-User license?

Answer 5

Single-User license:

This allows the user to load this software package onto only one machine.

Question 6

What do these software license types mean; Multi-User license?

Answer 6

Multi-User license:

Can be purchased for installation on several machines and the software can be loaded onto the leisure centre network.

Question 7

What do these software license types mean; Site license?

Answer 7

Site license:

The software is available to everyone with network access at the same time.

Question 8

What are the groups that are involved with the DPA at PL?

Answer 8

• Data controller (person who collects and stores personal data)
• Data subject (staff members and customers)
• Information Commissioner (ensure they stick to the law)

Question 9

Personal data should be obtained and processed fairly and lawfully (DPA Principle)

Answer 9

Personal data is collected by PL during registration. Terms and conditions need to be available.

Question 10

Personal data can be held only for specified and lawful purposes (DPA Principle)

Answer 10

The data controller at the leisure centre must supply details about the data that will be collected and what it will be used for when registering with the Information Commissioner.

Question 11

Personal data should be adequate, relevant and not excessive for the required purpose (DPA Principle)

Answer 11

PL would need personal details of the customer so that they can be contacted. Date of birth will also be relevant (for membership type). It is not necessary to know sensitive information (religion or criminal record)

Question 12

Personal data should be accurate and kept up to date (DPA Principle)

Answer 12

PL would give the customer the option to check the accuracy and update their membership details online.

Question 13

Personal data should not be kept longer than necessary (DPA Principle)

Answer 13

If customer membership expires then their personal details should only be kept doe a reasonable time.

Question 14

Personal data must be processed in accordance with rights of the data subject (DPA Principle)

Answer 14

PL must supply the customer with details of any data they have stored about them and they need the option to correct or update this data.

Question 15

Appropriate measures must be taken against unauthorised access (DPA Principle)

Answer 15

PL must ensure that their system has adequate security measures in place to prevent unauthorised access of this data. It also needs to be backed up to prevent accidental loss.

Question 16

Personal data cannot be transferred to countries outside the EU unless the country has similar legislation to the DPA (DPA Principle)

Answer 16

PL must not share or transfer any of their customers data with organisations unless that country has similar DPA in place.

Question 17

What are the typical personal data required?

Answer 17

• Member Title
• Full name
• Address
• Postcode
• Gender
• Date of birth
• Contact phone numbers
• E-mail address

Question 18

What is the definition for validation?

Answer 18

Validation checks that data entered into the system is reasonable and sensible.

Question 19

What are the validation methods?

Answer 19

• Presence check (nothing has been left blank)
• Data type check (everything is the correct info & format)
• Length check (entered value is correct length)
• List box (enter dates and times of bookings)
• Format check (ensures it has a particular format)

Question 20

What is the information PL must provide on website (E-commerce)?

Answer 20

• Trading name
• Geographical address
• Contact details (including e-mail)
• Details of any entry in a trade register and registration number
• Details of any supervising authority or governing body
• VAT number, if applicable

Question 21

What is the information PL must provide when a transaction is taking place (E-commerce)?

Answer 21

• Different steps to follow to complete a transaction
• Whether or not the completed transaction with be saved and continue to be accessible to customer
• Correction facility (correct input errors before order)
• Failure to prove a correction facility allows customer to withdraw their order
• Terms and conditions are applicable to transaction
• A receipt for order

Question 22

What are the typical transactions carried out by PL?

Answer 22

• On-line registration
• Booking classes
• Entering for events and competitions
• Logging onto personal profile