Unit 1: Page 27: Protecting Data: Legislation and Codes of Practice Flashcards
Name the two legislations for protecting data.
> Data Protection Act 2018
Computer Misuse Act 1990
Explain the Role of the Data Protection Act 2018.
> The main UK legislation for the protection of personal data.
Protects the privacy of individuals personal data held by others.
Gives rights to individuals on what data is collected and how their data is used.
Explain the Impact on individuals the Data Protection Act 2018 has.
> Personal data collected by others is likely to be kept secure and not be misused.
Compensation can be claimed for any harm caused due to misuse of an individuals data.
Explain the Impact on organisations the Data Protection Act 2018 has.
> Increased costs to meet requirements for data security.
Limited in how much data can be gathered and how it is used.
Fines of up to £17 Million if in breach of the law.
Explain the Role of the Computer Misuse Act 1990.
> Protects against attacks on IT systems used to gain unauthorised access and steal or cause damage to data.
Covers threats like hacking and spreading malware.
Explain the Impact on individuals the Computer Misuse Act 1990 has.
> Provides protection from attacks to an individuals computer system.
Those who carry out attacks can face unlimited fines and up to 10 years in prison.
Explain the Impact on Organisation the Computer Misuse Act 1990 has.
> Organisations computer system are more secure data to the deterrent of legal repercussions for attacks on system.
Requires organisations (and their employees) to develop and adhere to effective security policies.
What are Codes of Practice and the three aims?
They are best practice guidelines.
> Help support compliance with the Data Protection Act 2018, Computer Misuse Act and other related legislation.
> Ensure data is not mishandled, which would lead to a negative impact on an organisation’s reputation.
> Give individuals confidence that the data they supply to organisations will be safe.
