Legalities and Ethics Flashcards
AI
Artificial Intelligence
the idea that computers can learn
Basel Convention
a treaty set up to reduce the amount of hazardous waste, such as e-waste
BCS Personal Data Guardianship Code
British Computer Society Personal Data Guardianship Code
used to help organisations understand their ethical responsibilities, split into six sections
Access
directs who should have access to what under ethical code
Accountability
directs how people should be held accountable for breaches of ethical code
Consent
directs when consent is needed to access data under ethical code
Responsibility
directs where responsibility lies for breaches of ethical code
Stewardship
directs any ideas relating to stewardship under ethical code
Visibility
directs what should or shouldn’t be visible to whom under ethical code
Cloud Computing
using remote computers to facilitate storage or processing across the internet
CMA
Computer Misuse Act 1990
laws put in place to help combat issues arising from computer misuse
Code of Conduct
defines acceptable behaviour within an organisation, eg log off computer after use, turn off computer when not in use, emails should be properly formatted
Formal Code of Conduct
a code of conduct that is actually written down
Personal Code of Conduct
a code of conduct specific to a person, which reflects their own ethical standards in everyday actions
Informal Code of Conduct
where there is no hard copy of the code of conduct, and instead, a business relies on common sense and where senior members of staff set an example to junior members
Computer Misuse Act Term 1
access data without permission eg looking at someone else’s files, carries a six month prison sentence and £500 fine
Computer Misuse Act Term 2
access computer systems without hacking eg hacking, carries a six month prison sentence and £500 fine
Computer Misuse Act Term 3
alter data stored on a computer system without permission eg writing a virus that deliberately deletes data, carries an unlimited fine and a 1 year prison sentence
Copyright, Designs and Patents Act 1988
legislation that protects intellectual property, making it illegal to share any work that has copyright without the owner’s permission and plagiarise the work of another that has copyright
Copyright Free
something that does not have copyright
Copyright Notice
something acknowledging the original creator/owner of work that must be intact on all copies of the work
Creative Commons Licencing
an organisation that provides licences to individuals or other organisations that want to give the public the ability to legally share and develop their work, meaning if a person’s intellectual property has a Creative Commons Licence, the individual does not need to ask the owner’s permission to use it.
Attribution Licence
a type of creative commons licence that allows work to be shared, copied and modified, but the creator must be credited
Non-Commerical Licence
allows work to be shared, copied and modified, but the creator must be credited and the work cannot be used to make a profit
Non-Derivative Works Licence
allows work to be shared and redistributed, but not modified in any way
Share-Alike Licence
allows work to be shared, copied and modified, but the creator must be credited and the modified work must be released under the same terms as the original
Cultural Considerations
a set of considerations regarding the ideas, customs and social behaviour of a society
Data Portability
a person’s right to move their data between different organisations
DPA
Data Protection Act 2018
laws about personal data held by an organisation, stating that personal data must be kept up-to-date and accurate, not held for any longer than is necessary, that individuals relating to that information can access it and correct it and that they can receive compensation if the law is not followed regarding their data.
First Data Protection Principle
processing of personal data for any of the law enforcement purposes must be lawful and fair
Second Data Protection Principle
the law enforcement purpose for which personal data is collected on any occasion must be specified, explicit and legitimate, and personal data so collected must not be processed in a manner that is incompatible with the purpose for which it was collected
Third Data Protection Principle
personal data processed for any of the law enforcement purposes must be adequate, relevant and not excessive in relation to the purpose for which it is processed
Fourth Data Protection Principle
personal data processed for any of the law enforcement purposes must be adequate, relevant and, where necessary, kept up to date, and every reasonable step must be taken to ensure that personal data that is inaccurate, having regard to the las enforcement purpose for which it is processed, is erased and rectified without delay
Fifth Data Protection Principle
personal data processed for any law enforcement purposes must be kept for no longer than is necessary for the purposes for which it is processed
Sixth Data Protection Principle
personal data processed for any of the law enforcement purposes must be so processed in a manner that ensures appropriate security of the personal data, using appropriate technical and organisational measures
Exemptions to the DPA
- Data related to the prevention and detection of crime
- Data related to the capture and prosecution of offenders
- Data related to the assessment or collection of tax or duty
- Data related to personal data by an individual for purposes of their personal, family or household affairs
- Data related to national security and the armed forces
- Data related to journalistic, literary or artistic purposes
- Data related to research, statistical or historical purposes
- Data related to an individual’s physical or mental health
- Data related to an individual’s educational records or relates to social work
- Data relating to human fertilisation and embryology
- Adoption records
- EHCPs
- Data related to a corporate finance service
- Data related to child abuse
Digital Divide
the gap between those who have access to computer technology and the internet and those that don’t
Energy Star
label given to devices that use 30-75% less energy than a normal device
Environmental Considerations
considerations regarding the surroundings or conditions in which a person, animal or plant lives in or operates
Ethics
a set of moral principles formed by society
Ethical Considerations
a set of considerations to promote what is good for society
Public Considerations
ethical considerations regarding how employees should act regarding public interest
Client and Employer Considerations
ethical considerations regarding how employees should act regarding their client and employer
Product Considerations
ethical considerations regarding how employees should act regarding their products, for example, keeping their products and related modifications to the highest standards possible
Judgement Considerations
ethical considerations regarding independence, integrity and personal judgement
Management Considerations
ethical considerations regarding the ethical approach of managers
Profession Considerations
ethical considerations regarding advancement
Colleagues Consideration
ethical considerations regarding colleagues
Self Considerations
ethical considerations regarding the practice of their specific profession
E-Waste
discarded electronic appliances such as mobile phones, computers and televisions
Fossil Fuels
are often burnt to provide energy for computers and damage the environment. To avoid this, users can turn off computers and peripherals when not in use, adjust power setting to minimise power consumption, and choose more energy-efficient and environmentally-friendly devices, for example laptops instead of desktop machines, as these use 75% less energy, using a smaller monitor, as these account for most of the power used by computers, use inkjet printers instead of laser printers, as they use about 90% less energy, or use devices with the Energy Star label
FoIA
Freedom of Information Act 2000
legislation making it possible for the public to access information about a public organisation, including activities they partake in, making it mandatory for organisations to publish some data regularly and allow people to access this data and make further requests
FoIA Term 1
public authorities are obliged to publish certain information about their activities
FoIA Term 2
Exemptions to the FoIA
- information held for criminal investigations
- information relating to correspondence with the royal family
- information where disclosure may cause a specific type of harm, such as endangering health and safety
- information that would prejudice law enforcement
- information that would prejudice someone’s commercial interests
Footprinting
the first step in the evaluation of the security of any computer system, involves gathering all available information about the computer system or network and the devices that are attached to it, enabling a penetration tester to discover how much detail a potential attacker could find out about a system and allowing an organisation to limit the technical information about its systems that is publicly available
GDPR
General Data Protection Regulation
the EU’s rules on data protection and privacy, were used in the UK until 2018
Globalisation
how computer technologies are helping to connect the world, with advantages and disadvantages
Hackers
people who find bugs in systems
Black-Hat Hacker
hackers who find vulnerabilities and use them to cause harm or sell them to someone who will
Grey-Hat Hacker
hackers who identify as both black- and white-hats, who often sell vulnerabilities to other people to cause harm and notify the company of the vulnerability in order to get paid twice
White-Hat Hacker
ethical hackers who find bugs in systems and report them back to companies
Increased Pollution
the increase in use of technology causes an increase in pollution, causing a decrease in food resources
Increased Population
the internet means that health information is more widely available, contributing to an increase in population, causing problems in developing countries where food and healthcare products are scarce
ICC
Independent Complaints Commission
the organisation in charge of dealing with Data Protection breaches
IAR
Information Asset Register
a log or index of personal data held by an organisation under DPA
Information Commissioner
all organisations storing personal information in relation to the Data Protection Act have to register with this organisation
Inkjet Printer
printers that use 90% less energy than laser printers, but are not as high quality
Intellectual Property
person’s property that is the result of their creativity
Laptop
use 75% less power than desktop machines
Laser Printer
printers that use 90% more energy than inkjet, but are high quality
Landfill
in many countries, it is illegal to dump technological products in landfill as they contain non-biodegradable materials and have toxic materials that can leak into the surrounding earth and waters
Legal Considerations
a set of considerations that violate rules which a particular country or community recognises as regulating the actions of its members and which it may enforce my the imposition of penalties
Legislation
describes a law or laws set in place by the government
Monitor
monitors use more than 50% more energy than the actual computer, depending on how big the monitor is
Open Source Software
software that can be developed collectively online, such as Fandom and Wikipedia
COSS
Commercial Open Source Software
open source software with pull copyright, patents and trademarks that are controlled by a single entity
Community Open Source
not-for-profit open-source software operated by a community of developers
Privacy Considerations
considerations regarding an individual’s anonymity and how safe they feel in a location
Privacy Notice
a notice that people can look at that explains what data is being collected, what it will be used for, how long it will be kept for
Privacy Policy
a policy that a user has to agree to that lays out how the user’s data will be used by the company
Professionalism
the standards of people expected within a professional setting and also how we present ourselves to work colleagues and clients
Professional Standards
lays out appropriate use of computer systems in a given environment
Proprietary Software
software whose rights are owned by an individual or a company, usually the one that developed it, where usage is often restricted and the source code is not available publicly, usually targeted for end users with no technical or programming background
Public Entertainment Licence
licence that allows copyrighted material such as music or films to be shown or played publicly
Public Organisation
defined by the government as schools, universities, governmental departments, the Houses of Parliament, local councils, the police, the NHS and the armed forces
RIPA
Regulation of Investigatory Powers Act 2000
law that regulates the powers of public bodies to carry out surveillance and investigation, covering the purpose for which they may be used, which authorities can use the power, who should authorise each use of the power, the use that can be made of the material gained, independent judicial oversight, the means of redress for the individual
RIPA Power 1
powers concerning the interception of communications
RIPA Power 2
powers concerning the acquisition of communications data
RIPA Power 3
powers concerning intrusive surveillance
RIPA Power 4
powers concerning covert surveillance in the course of specific operations
RIPA Power 5
powers concerning the use of CHIS and UCOs
RIPA Power 6
powers concerning access to encrypted data
Recycle
an environmentally-friendly solution allowing components in computers, such as precious metals, to be retrieved and recycled
Repair
to prolong the life of a computer, delaying the need to manufacture a replacement
Right to be Forgotten
a person’s right under GDPR to ask an organisation to delete all personal data they hold about them
Sanctions
a penalty for breaking rules
Server Farm
a large number of servers in the same place, used for large-scale storage or processing
Software Licence
a legal instrument governing the use of software
Concurrent User Licence
a licence that allows a given number of people to use it
Freeware
software such as Wikipedia and Fandom, that anyone can use or edit
Network Licence
licence that allows software to be used anywhere on the internet
Shareware
software that anyone can use free of charge, but not edit, often given as a trial version until the person pays for the full version
Site Licence
a licence that allows a service to be used anywhere on a company’s site
Software Piracy
this is the illegal copying of software for either personal or business use
Stakeholder
someone with an interest or concern in a business
Telecommunications Regulations Act 2000
legislation that gives businesses the right to monitor communication on their own networks
Teleworking
working from home
Theft
the theft of hardware and software ideas and innovations
Energy Star
a label given to devices that use 30-75% less energy than a standard product
