Thirdly, if there is a situation in which a hacker should wish to break into WLC’s Network to try and attempt to obtain data unlawfully, WLC will need to be trained and fully prepared if such unexpected crisis occurs within their organization. This also becomes their responsibility under the Data Protection act to ensure tight security measures are taken on board, such as setting up a firewall or encrypting systems to prevent hackers gaining access into their network. This factor should not be taken lightly as personal data such as customer’s bank details are vulnerable to attacks, meaning WLC must take these precautions very seriously.
Any customers that wish to view their details on WLC’s system have the right to inquire about it, and correct any information that has been put in incorrectly etc. WLC should have a system in which they ask specific security questions at hand to make sure and confirm that the individual that is querying about their details is the right person.
LEGAL ISSUES-: Freedom of Information Act.
Whiteman Leisure must provide information that the customer would wish to see about their details if they inquire about it. Before WLC hand out the information to the customer, there are some areas in which WLC need to check before handing over the data or view the document. They need to ask the customer specific questions regarding their details so that they are sure that the customer who is wishing to view their information, is not an imposter or a fraud.
After these questions are successfully answered, then the information can be handed over on the basis that has been laid out by WLC or the customer themselves. By taking these steps, WLC can keep the customer within their limits, and prevent WLC from breaking the company policy in regards to the act.
LEGAL ISSUES-: Computer Misuse Act.
The Computer Misuse Act applies to every organization that is in possession of a computer system.
As WLC have computer systems set up in place, there are steps that they should take in order to abide by this law, and to keep all information stored on these systems safe and secure. WLC can achieve this by filtering specific sites which can cause harm to a system, or enable a keystroke logging, (tracks any information that is entered into the system) and many more which I will list below;
Use of E-Mail-:
E-mail has become a necessity to virtually every human being on this planet to use to contact friends and family, However this can be time wasting time for staff within WLC.
Within WLC they must clearly state where and when the use of e-mail would be most appropriate. This would alert the staff towards the use of e-mail and would reduce the amount of time wasting if they e-mail to other individuals which is non-business related.
Every incoming and outgoing email should be monitored by a tracking software, in order to detect information that can be classified as illegal or offensive material, and then block the account from sending further emails. This can lead on to disciplinary action that can be taken against a member of staff which does not follow the rules.
Firewall-:
A firewall blocks access to information that Whiteman Leisure hold, from external sources and so on.
WLC need to constantly check if any anti-virus applications are up to date. There are many dangerous files which can be avoided by WLC, these can include from unauthorized access from hacking your system. Therefore it is important for WLC to have a firewall installed in order to keep the organization running as smoothly as possible without any devastating attacks coming by.
- Backing up data is an important step for WLC to undertake, so they can increase their efficiency of the day to day running of the business. By having different versions of the various files allows referencing to the file at whichever stage it was most efficient at. WLC can also store data on external hard-drives or even online backup services, as well as partitioning their hard-drives.
-
A business continuation plan: It is very important for Whiteman Leisure to have a contingency plan in place, to ensure the business can continue running as normal if an unforeseen crisis occurs within the organisation. A contingency plan can be created by backing up systems/files as well as ensuring security software are installed in every system or server, to prevent the system from being vulnerable to serious attacks. There are various methods in which they can backup their data, the first being to replace old files with the latest ones. This is an important factor to take into consideration as you should ensure the most recent files are saved, so you can retrieve them at a later stage if the system was to crash so you can continue running the business as normal.
Another example could be if a supplier was to go bankrupt and cease in supplying the goods, The Purchasing & Administration team within WLC would need to have a backup supplier in place. However this needs to be planned and set up before a problem actually occurs within the organization and causes severe chaos.