Please enable JavaScript.
Coggle requires JavaScript to display documents.
legislation - Coggle Diagram
legislation
lawfulness, fairness and transparency
there must be valid reasons for collecting and using personal data.
nothing must be done with the data in breach of any other laws.
personal data can only be used in a way that isn't fair. this means data must not be processed in a way that is damaging, unexpected or misleading.
the person or organisation collecting the data must be open and honest with people from the start about how they will use their personal data.
purpose limitation
the purpose for processing the data must be clear from the start
the purpose must be documented and specified in privacy information that is communicated to individuals.
data must not be used for new purposes unless this is compatible with the original purpose if it is not then additional consent must be obtained unless there is a clear obligation or function set out in law.
data minimisation
data being processed must be:
adequate,
relevant,
limited to what is necessary.
accuracy
all reasonable steps must be taken to ensure the personal data held is not incorrect or misleading.
data must be kept up to date.
if any data is incorrect or misleading it must be corrected or erased as soon as possible.
challenges to the accuracy or personal data must be considered.
storage limitation.
data must not be kept for longer than necessary.
how long data is kept for must be justified and specified in a policy statement.
there must be a periodic review of the data held, and data no longer required should be erased or anonymised.
data can be kept for longer if it is only kept for public interest archiving, scientific or historical research, or statistical purposes.
computer misuse act 1990
under the provisions of the computer misuse act 1990 it is a criminal offence to make any unauthorised access to computer material...
with intent to commit further offences (for example blackmail)
with intent to modify the computer material (for example disturbing viruses)
the first provision refers to anything that impairs the performance of a computer system including the distribution of viruses.
copyright, designs and patents act 1988
the CDPA protects the intellectual property of an individual or organisation. under the act it is illegal to copy, modify or distribute software or other intellectual property without the relevant permission. this act also covers video and audio where peer-to-peer streaming has had a significant impact on the income of the copyright owners. using the internet to download free copies of copyright material (e.g. software, films, books, music) without consent of the author is illegal since no money or credit will have been passed on to the original creator.
software licences
most commercial software will come with a licence agreement specifying how the purchaser may use the product. in most cases a licence key will be required to access the software to prevent unauthorised copying distribution.
data protection act
computers hold vast amounts of data and it is important this data is collected, stored and processed in ways to protect the individual. the data protection act 2018 sets out rules for handing this personal data and its UK's implementation of the general data protection regulation. every organisation, apart from those with specific exemptions, holding personal must register with the information commissioners office and disclose what data they are holding, why they are collecting it and how it will be used.
-