Personal information may be kept for no longer than is necessary and must be kept up to date. 5) Personal information may not be sent outside Europe unless the person whom it is about has agreed. 6) All organizations that process personal information must register with the Information Commissioner’s Office. 7) Organizations that keep personal information are required to have adequate security measures in place. 8) People have the right to have incorrect information about the corrected. This affects Northrop as they hold personal information about every student such as address, next of KIN and contact numbers.
Northrop have to make sure that the information Is secure. Freedom of Information Act 2000: This deals with access to official information. It gives individuals or organizations the right to ask for information from any public authority including: Central and local government. Police. INS. Colleges and schools. Public authorities have days to provide you with the information requested. They may refuse if the information is exempt from the act. Some examples of the exemptions are: If the information could harm national security. Could damage commercial interests
This affects Northrop as the information they hold of you may change such as if you move house then your address will change. Also if you purchase a new phone then your phone number could change and you will need to inform the college. Computer Misuse Act 1990: The computer Misuse act details 3 offences, these are: Unauthorized access to any computer program or data – the most common form of this is using someone else’s ID card and password. Unauthorized access if intended to commit a serious crime. Unauthorized modification of computer contents.
This means impairing the operation of a computer, a program or the reliability of ATA. It also includes preventing access to any program or data. Examples of this are the introduction of a virus, modifying or destroying another users files or changing financial or administrative data. This affects Northrop as there can be a case of Plagiarism in the college. This means students can copy other students work and give it in as their own. Northrop help to prevent plagiarism as they have the ability to do electronic submissions which can be entered through and automated plagiarism checking system.
They also have data bases of information that they hold and information on the web to make sure dents haven’t just copied and pasted from the internet. Ethical issues Ethical issues that affect Northrop are: Codes of Practice: Many organizations will have a code of practice to make it clear what uses can be made of their computing facilities. The main uses will be to support the purpose of the organization, but a code of practice will often define the extent to which private use of the computer system is permitted.
Examples of items included in codes of practice: Use of email – Threatening or harassing emails are usually banned, as well as spamming or producing large numbers of unsolicited emails. Limited use of email for private purposes is often allowed. Use of the internet – Inappropriate classes of websites, such as pornography or gambling, are usually banned, either by the code of practice or by filtering software. Limited internet use for personal purposes is often allowed, as this can be difficult to distinguish from professional research.
Whistle Blowing – Codes of practice will often protect users who draw management’s attention to other users’ misuse of the system. The codes will certainly protect IT administrators who run the servers and will often be the first o detect misuse. Northrop shows the codes of practice as they welcome everyone to college despite the students abilities, background and characteristics – including the adult’s age, sex, sexual orientation, religious persuasion, racial origin, ethnic group, and cultural and linguistic heritage. An organization’s policies may have a significant effect on how it treats information.
This is the equality and diversity policy of Northrop. This is what every organizational policies should be. Information ownership This would prevent staff at one location accessing information held at another action even though the company would be happy for them to do so. The department that produced the data should own every field of data in every record. They should have the responsibility for making sure that it is entered into the computer system in a timely way, that it is correct and that it is consistent. This links in with plagiarism at Northrop.
Security of information and back ups Northrop keep all data and information stored at broad water campus in a fireproof cabinet. They have backups frequently to make sure all information is kept safe and not lost. Health and safety polices to abide by Northrop have a Health and safety page on Blackboard for all students and teachers to read. They have different sub headings of which health and safety they are explaining. Fire evacuation Fire evacuation procedures and routes are clearly signposted in classrooms and key points in the College.
Please be calm and sensible, while exiting the College and making your way to the campus meeting point. Fires can happen at any time and this procedure they take is to make sure every student is safe if a fire occurred. What organizational policies might exist An organization’s policies may have a significant effect on how it treats information. An organization with a strong hierarchy that operates on a need to-know basis is likely to impose policies restricting access to information (e. G. Government or military).
For example it may keep its databases, files and email servers in a secure central data centre. IT security and data centre staff may put in place tight controls on who can access or update this information. This links in with the security of information for Northrop as they keep their information in a fireproof cabinet at Seashore campus. This also means that Northrop must do regular backups to prevent information from getting deleted or lost. This may be a full back up of all information or a partial backup of just the changes since the last full backup.
What business continuance plans might exist This is a plan for when things go wrong and how we best maximize profits but in terms of business how operations can continue if any major part of an IT system should fail. BCC- The IT department should have things set up so that if there is a major failure, they will be able to continue to provide a service, even though it ay be a reduce or limited version of the standard service. A good example is to provide a dual network, attaching alternate terminals to each network. That way should there be a failure of one network half the terminal will continue to work.
In a retail setting they may have more checkouts than required in case one goes down or two servers on the till. However you should not expect businesses to be able to cover every eventuality. Cost- Whether an organization is: A business with a focus on costs. A government organization whose aim is to deliver the best possible service within a fixed budget. A not-for-profit charity. It is important to manage the cost of an IT system. In other units you have looked at setting up Mr. Patella with an IT system to suit their needs. You should have looked at the total benefits of the system and weighed that against the costs.
Ideally the benefit gained should greatly outweigh the cost. This affects Northrop as the majority of the college depends on the IT services which means if they fail than the majority of the students cannot do their coursework and teachers will have to alter their lessons. Northrop have backups that they do weekly. Software updates need to be Estes before proceeding. They restore and back up. How does the organization deal with new technology for staff. New technology for staff within businesses can have hug positives but also huge negatives.
The positives are; the new technology can be much more easier to use making jobs quicker to complete, better quality of work, possibly could result in a promotion. The negatives are; could make a few members of staff redundant, possibly have to pay for someone to come and train staff how to use new technology, possibility of pickling staff. An example of this at Northrop could be if they researched a computer that you could type in the book that you would like to find and it can tell you exactly what part of the library the book is, it can also show who is renting the book at what time.
If Northrop purchased this computer than the librarians wouldn’t have to do that job, this would be one less job they would have to do. This could lead in to not having as many staff working at once which means less hours for the librarians. Northrop would also have to pay someone to teach the teachers and students how to use it. The positive of this computer would be that it would save a lot of time for students trying to find a book.