Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security of, privacy of and access to personal/confidential information/data.

Published byAlexander Mills Modified over 8 years ago

Similar presentations

Presentation on theme: "Security of, privacy of and access to personal/confidential information/data."— Presentation transcript:

1 Security of, privacy of and access to personal/confidential information/data

2 Anonymised information Information about individuals without mentioning the person by name is called anonymised information. Where anonymised information would be sufficient for a particular purpose, organisations should always omit personal details wherever possible.

3 Aggregated information Aggregated information is where personal details of individuals are combined to provide information without naming those individuals. This could be in the form of medical information regarding a list of patients who are suffering from a certain illness.

4 Duty of confidence the duty of confidentiality obliges employees to respect the confidentiality of individuals. Information that employees obtain about individuals affairs must be kept confidential, and must not be used for the benefit of persons not authorised by the individual

5 Duty of fidelity An employee must be loyal to their employer for so long as they work for them. That means that they must not tell any rival companies about their work. Once an employee leaves a company they are free to use the skills and knowledge with their new employer.

6 Why was suspected child offender allowed to work in a school, which lead to him murdering these two girls?

7 Because he was only ‘suspected’ and never found guilty. The police wouldn’t realise this data to the school, due to data protection

8 What is the Data protection legislation? Data protection acts exist in most countries. These set down rules for keeping data private as well as confidential.

9 What are the eight principles of the DPA? Personal data shall be processed fairly and lawfully. Personal data shall be obtained only for the purpose and shall not be used for anything other than the purpose

10 Personal data shall be adequate, relevant and not excessive in relation to the purpose (or purposes) for which they are processed.

11 Personal data shall be accurate and, where necessary, kept up to date. Personal data processed for any purpose shall not be kept for longer than necessary

12 Personal data shall be processed in accordance with the rights of data subjects. Appropriate security measures shall be taken against unauthorised or unlawful processing data. Including loss / leaks.

13 Personal data shall not be transferred to a country outside the EU unless that country guarantees the same level of data protection.

14 Phishing My username My password

15 Pharming Instead of an email being sent with a fake link. Imagine you goto HSBC.ae and the site has been ‘hacked’. It looks correct But you login and it doesn’t work. Pharming is when the site or DNS is hacked, this is down to banks to check this

16 Spyware Software that is accidently downloaded. Allows ‘creator of the software’ to be able to spy on you. Most anti-virus will detect spyware as well.

17 Anonymized vs Aggregated

18 Usefulness of aggregated information

19 Safe guarding privacy

20 Duty of Confidence

21

22

23

24 Anonymized vs aggregated

25 Problems with aggregated information

26 Security Measures In order to protect personal information from unauthorized access, a number of security measures need to be put in place: o Usernames – gives individuals access to various parts of the system o Password – prevents unauthorized access to the system o Biometrics - finger print/ eye recoginition as an alternative to passwords o Firewalls – software for preventing hackers to accessing the system o Encryption – scrambles the information so it cant be read by any unauthorized user. A decryption key is issued to authorized users to decrypt data.

27 Social and Ethical Issues Discuss the following in relation to the breach of data privacy : SOCIAL Issues: How will it impact society? Privacy Reliability and integrity Security ETHICAL Issue: Differentiating between the right and wrong/LAWs Breach of the Data Protection Act Duty of Confidence Duty of infidelity

Download ppt "Security of, privacy of and access to personal/confidential information/data."

Similar presentations

Legal & Regulatory Compliance. Overview What types of information should be included? What issues or problems might there be? What benefits could be obtained?

Legal & Regulatory Compliance. Overview What types of information should be included? What issues or problems might there be? What benefits could be obtained?
Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
BIOMETRICS, CCTV & DATA PROTECTION By Drudeisha Madhub Data Protection Commissioner Date: 09.07.14.

BIOMETRICS, CCTV & DATA PROTECTION By Drudeisha Madhub Data Protection Commissioner Date:
Www.dataprotection.gov.je The Data Protection (Jersey) Law 2005.

The Data Protection (Jersey) Law 2005.
Legislation & ICT By Savannah Inkster. By Savannah Computer Laws 1.Data Protection ActData Protection Act 2.Computer Misuse ActComputer Misuse Act 3.Copyright,

Legislation & ICT By Savannah Inkster. By Savannah Computer Laws 1.Data Protection ActData Protection Act 2.Computer Misuse ActComputer Misuse Act 3.Copyright,
University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.

University of Sunderland Professionalism and Personal Skills Unit 11 Professionalism and Personal Skills Computer Legislation.
Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.

Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.
Data Protection Act 1998. Description The Data Protection Act controls how your personal information can be used and protects from the misuse of your.

Data Protection Act Description The Data Protection Act controls how your personal information can be used and protects from the misuse of your.
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales  2074 6677  2074 5626 

DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
Data Protection Overview

Data Protection Overview
The Data Protection Act

The Data Protection Act
Data Protection Act. Lesson Objectives To understand the data protection act.

Data Protection Act. Lesson Objectives To understand the data protection act.
 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.

 The Data Protection Act 1998 is an Act of Parliament which defines UK law on the processing of data on identifiable living people and it is the main.
The Legal Framework Can you work out which slide each bullet point should go on?!

The Legal Framework Can you work out which slide each bullet point should go on?!
CENTRAL SCOTLAND POLICE Data Protection & Information Security Stuart Macfarlane Information Governance Unit Police Service of Scotland.

CENTRAL SCOTLAND POLICE Data Protection & Information Security Stuart Macfarlane Information Governance Unit Police Service of Scotland.
Course: Introduction to Computers Lecture: 6.  Commercial software is covered by Copyrights.  You have to pay for it and register to have the license.

Course: Introduction to Computers Lecture: 6.  Commercial software is covered by Copyrights.  You have to pay for it and register to have the license.
General Purpose Packages

General Purpose Packages
Health & Social Care Apprenticeships & Diploma

Health & Social Care Apprenticeships & Diploma
EHRs and the European Union – current legislation and future directions. Dr Richard Fitton.

EHRs and the European Union – current legislation and future directions. Dr Richard Fitton.

Similar presentations

Ads by Google