Case Study. LEGAL ISSUES-: Data Protection Act. Whiteman Leisure must ensure that the information that they are dealing with, must be fully protected from unauthorized access

by rabz93 (student)

Tannim PashaUnit 03- Information Systems16/11/11

Actions in which Whiteman leisure can take to tackle the issues by the legal, ethical and operational implications (M2)

LEGAL ISSUES-: Data Protection Act.

Whiteman Leisure must ensure that the information that they are dealing with, must be fully protected from unauthorized access. They are also handling private data in which the members would not like WLC to pass onto other sources; therefore the Data Protection Act plays a major part in the day to day running of the organization.

Whiteman Leisure must use the data that is given to them for the original purpose that is stated. By handling a confirmation of purchase, such as the information and data which is passed onto the admin team from the customers who began a membership, means that the confirmation of the purpose, as well as the membership details cannot be used for purposes other than that subject. Whiteman Leisure can keep track of each data which enters the organizations systems, and to ensure that the member of staffs are aware of the protection which is required for each piece of data that enters the organization

Another factor in which WLC should take into consideration is to query the property of the specific data that they’re going to handle, (such as the customer’s personal details). This is important as the customer may grant WLC to transfer their information to any other third party organizations, however if the member does not allow the go ahead, WLC have to keep the data safely stored, therefore the querying with the customers carry a great importance.

Thirdly, if there is a situation in which a hacker should wish to break into WLC’s Network to try and attempt to obtain data unlawfully, WLC will need to be trained and fully prepared if such unexpected crisis occurs within their organization. This also becomes their responsibility under the Data Protection act to ensure tight security measures are taken on board, such as setting up a firewall or encrypting systems to prevent hackers gaining access into their network. This factor should not be taken lightly as personal data such as customer’s bank details are vulnerable to attacks, meaning WLC must take ...

This is a preview of the whole essay

Any customers that wish to view their details on WLC’s system have the right to inquire about it, and correct any information that has been put in incorrectly etc. WLC should have a system in which they ask specific security questions at hand to make sure and confirm that the individual that is querying about their details is the right person.

LEGAL ISSUES-: Freedom of Information Act.

Whiteman Leisure must provide information that the customer would wish to see about their details if they inquire about it. Before WLC hand out the information to the customer, there are some areas in which WLC need to check before handing over the data or view the document. They need to ask the customer specific questions regarding their details so that they are sure that the customer who is wishing to view their information, is not an imposter or a fraud.

After these questions are successfully answered, then the information can be handed over on the basis that has been laid out by WLC or the customer themselves. By taking these steps, WLC can keep the customer within their limits, and prevent WLC from breaking the company policy in regards to the act.

LEGAL ISSUES-: Computer Misuse Act.

The Computer Misuse Act applies to every organization that is in possession of a computer system.

As WLC have computer systems set up in place, there are steps that they should take in order to abide by this law, and to keep all information stored on these systems safe and secure. WLC can achieve this by filtering specific sites which can cause harm to a system, or enable a keystroke logging, (tracks any information that is entered into the system) and many more which I will list below;

Use of E-Mail-:

E-mail has become a necessity to virtually every human being on this planet to use to contact friends and family, However this can be time wasting time for staff within WLC.

Within WLC they must clearly state where and when the use of e-mail would be most appropriate. This would alert the staff towards the use of e-mail and would reduce the amount of time wasting if they e-mail to other individuals which is non-business related.

Every incoming and outgoing email should be monitored by a tracking software, in order to detect information that can be classified as illegal or offensive material, and then block the account from sending further emails. This can lead on to disciplinary action that can be taken against a member of staff which does not follow the rules.

Firewall-:

A firewall blocks access to information that Whiteman Leisure hold, from external sources and so on.

WLC need to constantly check if any anti-virus applications are up to date. There are many dangerous files which can be avoided by WLC, these can include from unauthorized access from hacking your system. Therefore it is important for WLC to have a firewall installed in order to keep the organization running as smoothly as possible without any devastating attacks coming by.

Backing up data is an important step for WLC to undertake, so they can increase their efficiency of the day to day running of the business. By having different versions of the various files allows referencing to the file at whichever stage it was most efficient at. WLC can also store data on external hard-drives or even online backup services, as well as partitioning their hard-drives.

A business continuation plan: It is very important for Whiteman Leisure to have a contingency plan in place, to ensure the business can continue running as normal if an unforeseen crisis occurs within the organisation. A contingency plan can be created by backing up systems/files as well as ensuring security software are installed in every system or server, to prevent the system from being vulnerable to serious attacks. There are various methods in which they can backup their data, the first being to replace old files with the latest ones. This is an important factor to take into consideration as you should ensure the most recent files are saved, so you can retrieve them at a later stage if the system was to crash so you can continue running the business as normal.

Another example could be if a supplier was to go bankrupt and cease in supplying the goods, The Purchasing & Administration team within WLC would need to have a backup supplier in place. However this needs to be planned and set up before a problem actually occurs within the organization and causes severe chaos.

Teacher Reviews

Here's what a teacher thought of this essay

Adam Roberts

1st of Mar 2013

Overall this is a very succinct and accurate document which pinpoints some of the things an organisation would need to address to conform to legislation and wider than that, things which are considered to be socially and ethically acceptable. It poses some interesting questions and makes the reader think about certain elements of an organisations responsibility towards its customers and employees. The document is balanced and well written. The quality of written communication is good. Four stars could be lifted to five by addressing some of the points in the comments for example by using some examples.

Did you find this review helpful? Join our team of reviewers and help other students learn