✅1.5.1 Computing related legislation Flashcards
(27 cards)
What is meant by personal data?
Any data which can be used to identify a living person or which can be used in combination with other data to identify a living person.
Which act concerns the malicious use of computers?
The computer misuse Act 1990
Which act protects people’s property online?
The copyright, designs and patents act 1988
Which act covers the use of personal data?
The data protection act 1998
Which act covers investigation and surveillance by public bodies?
The regulation of investigatory powers act 2000
Which act prevents computer programs from being copied?
The copyright, designs and patent act 1988
What name is given to an individual who can be identified by personal data?
Data subject
Name 5 data protection principles
They must make sure that information is:
1. Personal data must be used fairly, lawfully, and transparently
2. Personal data must be used for specified, explicit purposes
3. Personal data must be used in a way that is adequate, relevant, and not excessive
4. Personal data must be accurate and, where necessary, kept up to date
5. Personal data must be kept for no longer than is necessary
How does the data protection principle “Personal data must be used fairly, lawfully, and transparently” affect a company?
A company has to be clear about what personal data they wish to collect and what they want to use it for.
How does the data protection principle “Personal data must be used for specified, explicit purposes” affect a company?
A company cannot use personal data for any purpose other than what they stated originally. They also cannot pass this data on without permission.
How does the data protection principle “Personal data must be used in a way that is adequate, relevant, and not excessive” affect a company?
A company cannot request personal data that they do not need right away.
How does the data protection principle “Personal data must be kept for no longer than is necessary” affect a company?
A company must delete personal data once they no longer have a need for it.
How does the data protection principle “Personal data must be accurate and, where necessary, kept up to date” affect a company?
If a company holds personal data that is wrong or out of date then you have a right to have it corrected or deleted.
What are 4 actions companies must take under the data protection act 1998?
- Companies must appoint a member of staff as their Data Controller. They will then be responsible for making sure that the principles of the Data Protection Act are not breached and to keep in communication with the Information Commissioner
- The company must put in place physical or digital security measures to prevent the data from being accessed without consent
- The company should make sure that they train their staff to abide by the principles
- Companies must send a copy of the subject’s data if a Subject Access Request (SAR) is received. This copy must be sent securely after the company has verified the identity of the subject
What happens to companies if they are found to be in breach of the Data Protection Act?
They can face extremely large fines.
Name 5 rights you have under the data protection act 2018
The right to:
1. Be informed about how your data is being used
2. Access personal data
3. Have incorrect data amended
4. Have data erased
5. Stop or restrict the processing of your data restrict the portability of data, or sharing with third parties
What is the Data Protection Act 1998?
A law that protects personal data from being misused
What is the Computer Misuse Act 1990?
A law that concerns the malicious use of computers. The act was originally created to make sure that computer hacking was covered within the law.
Name two of the three primary offences under the computer misuse act 1990?
- Unauthorised access to computer materials.
- Unauthorised access with intent to commit further offences.
- Unauthorised modification of computer material.
What is the General Data Protection Regulation (GDPR)?
A regulation in EU law that seeks to ensure data protection and privacy for citizens of the EU and EEA.
What does the copyright, designs and patent act 1988 legislate?
A law that protects the intellectual property of an individual or a company
It makes it illegal to copy, modify or distribute software or other intellectual property without the relevant permission
If original work is original, copyright will be automatically applied and will not expire until 25 - 70 years from the death of the creator depending on the type of work
If an individual believes that their work has been copied it is their responsibility to take action under the Copyright Designs and Patents Act.
What are 10 prohibited actions under the Copyright, Designs and Patents Act 1988?
Primary Breaches:
1. Copying an original work
2. Issuing the copy of the original work to the public
3. Renting/lending the copy of the original work to the public
4. Performing, showing or playing the original work in public
5. Making an adaptation of the original work
Secondary Breaches:
1. Importing a copy of original work
2. Possessing or dealing with a copy of the original work
3. Providing means to make copies of the original work
4. Permitting the use of premises for making copies of the original work
5. Provision of props/equipment for a performance of a copy of the original work
What does copyright protect?
Original works.
What does design rights protect?
The shape or configuration of a product or item.
