Sercurity - Information Management

Question 1

Define Information

Answer 1

Obtained when data is manipulated by the computer’s processor into a meaningful and useful form

Question 2

REASONS WHY DATA AND INFORMATION ARE IMPORTANT TO ORGANISATIONS

Answer 2

Having qualities of completeness, timeliness, accuracy, unbiased ness and clarity help to:

• assist in decision making
• support organisational goals (eg making profit)

Question 3

Define Legal Obligations

Answer 3

Legal obligations that individuals and organisations have with respect to the ownership and privacy of information, and freedom of expression

Question 4

What are physical security measures?

Answer 4

Equipment used to assist in the production of information systems and the files produced, received and stored by individuals and organisations

Question 5

What are software security measures?

Answer 5

Software and procedures used to assist in the protection of information systems and files produced, received and stored by individuals and organisations
Eg. User names, passwords, encryption, firewalls etc

Question 6

What is personal information?

Answer 6

Is information about an individual whose identity is clear and can reasonably be worked out from that information

Question 7

Examples of personal information

Answer 7

Names
Address
Age
Gender
Personal opinions
Financial status

Question 8

What is sensitive information? And examples

Answer 8

Information that can’t be asked about an individual

Examples:

• racial or ethnic origin
• political opinions
• religious beliefs

Question 9

What is health information?

Answer 9

Medical history including physical, mental and psychological health, including any disability
Dental records

Question 10

What does Information Privacy refer to?

Answer 10

The rights of individuals and companies to deny or restrict the collection and use of information about them

Question 11

What are the benefits of the Privacy Laws?

Answer 11

Give consumers legal protection and enforceable rights

Give them more say in how their personal information is collected and used and who gets to see it.

Question 12

What are the 10 privacy principles?

Answer 12

Collection
Use and Disclosure
Data Qualitly
Data Security 
Openness 
Access and Correction
Identifiers 
Anonymity
Transborder flow
Sensitive information

Question 13

Privacy Principle: Collection

Answer 13

Any information collected must be for a lawful purpose and necessary for that purpose

Question 14

Privacy Principle: Use and Disclosure

Answer 14

The collector of information must disclose why the information has to be collected, that it is lawful or required under law

Question 15

Privacy Principle: Data Quality

Answer 15

Collected information must be accurate, up to date and complete

Question 16

Privacy Principle: Data Security

Answer 16

Records must be stored and safeguarded against loss, unauthorised access, user modification or disclosure

Question 17

Privacy Princliple: Openness

Answer 17

Record keepers must make it clear what information is stored, it’s purpose and how people can access

Question 18

Privacy Princliple: Access and Correction

Answer 18

Individuals are entitled to see their information and most be corrected if inaccurate

Question 19

Privacy Principle: Identifiers

Answer 19

Identifiers, eg Tax file numbers, cannot be used for another company

Question 20

Privacy Principle: Anonymity

Answer 20

Individuals have the right to be anonymous if necessary

Question 21

Privacy Principle: Transborder flow

Answer 21

Information must not be sent outside the country

Question 22

Privacy Principle: Sensitive Information

Answer 22

Information that is sensitive must not be collected

Question 23

Privacy Act (Commonwealth) : what year and who does it cover?

Answer 23

Year : 1988
Covers:
Commonwealth government departments or agents (Medicare, CFA, police)
Private organisations that have a turnover of over $3 million per year, buys or sells personal information, holds health information

Question 24

Information Privacy Act (Vic) : year and outlines privacy obligations of who?

Answer 24

Year: 2000
Outlines the privacy obligations of
- State government agencies
- Contractors working for the state government (school bus drivers)

Question 25

Define Data

Answer 25

The raw unorganised fact, figures and symbols fed into a computer during the input process