Legislation
Copyright, Designs and Patents Act
Checks for unauthorised software
No illegal downloads - forbidden by acceptable use policy
Check no more copies of software are being used than the site licence allows
Computer Misuse Act
Forbid all staff from planting viruses
Forbid staff from doing unauthorised work
Ensure checks are in place to detect fraud
Ensure users do not swap usernames and passwords
Freedom of Information Act
Ensure requests for disclosure are met
Provide details on any codes used
Health and Safety at Work Act 1974 (Diplay screen Regulations 1992)
Regular inspection of ICT workstations and room
Working practices for staff to change tasks
Training to minimise the risks of staff
Arrange for regular eye tests and payment for glasses if needed
Create software which is not stressful to use
Data Protection Act
Appoint a data controller
Notify the Information Commissioner's office that organisation is processing personal data
Adopt procedures that allow subject access
Procedures to allow records to be changed should info held be wrong
Staff training to educate them about the DP Act
Procedures to ensure that the privacy and security of data held