作者:maddy hopgood 5 年以前
173
Hopgood Maddy legislation
Several laws govern the handling of information and data protection. The Freedom of Information Act grants public access to recorded information held by public authorities, while the Data Protection Act emphasizes the importance of processing data fairly, accurately, and securely, with specific limitations on data retention and transfer.
開啟
Legislation Freedom of information act Covered under the DPA. Public access to any recorded information held by public authorities. Health and safety at work act Powers of inspector Right to see documents and take copies Take substances or equipment Right to dismantle equipment Right to investigate and examine Rights of entry at
reasonable times Employees responsibility Co-operate with
their employers Take care of their own
health and safety Employers responsibilites Talk to safety representatives Provide a written safety
policy/risk assessment Safe working environment Safe place of employment Provide information, training, instruction and supervision Provide and maintain safety equipment 1974 Computer misuse act Stop unauthorised access 1990 Hacking Black hat Modify data illegally
Grey hat Without malicious intent
White hat Permission
Copyright Forbids Renting software Using software on a network Selling a copied copy Copying software or pictures
to a friend 1988 Right to control ways creator's
data is used GDPR Includes the right to be forgotten Same as DPA except for some differences Those processing criminal
data need official authority Child consent data processing
down to 13 years old Fines for breach of law More serious offences result in
£20 million fine or 4% of turnover Smaller offences result in £10 million
fines or 2% of turnover effects EU citizens Data protection act Computer and paper 2018 What rights do data subjects have? Exemptions to the rights Examination results
National security
Police investigations
Stop or restrict the processing of their data Be informed about how their data
is being used Access their personal data Have incorrect data updated Have their data erased on request Data protection principles Not transferred to unprotected countries Handled in a way that ensures securely not kept for longer than necessary Accurate Used adequately and relevant For specified purposes Used fairly