BT2103 Developing Small Systems for Business Lecture 2 Databases, Data Management, And The Legal Framework
Contents Databases –Requirements of Information –Information Environments –Data Organisation –Terms –Structure Data Management –Database Management Systems –Data Administration Legal Framework –The Data Protection Act (1998)
Requirements of Information Information Systems need to provide information that is: –Timely –Accurate –Relevant
Traditional File Environment Data Redundancy and Confusion Program-Data Dependence Lack of Flexibility Lack of Data-Sharing Poor Security
Database Environment “A collection of data organised to serve many applications at the same time, by storing and managing data so that they appear to be in one location” Laudon and Laudon (2000)
Data Organisation Bit0 Byte – the letter v FieldBgkalina – a ‘name’ field RecordBgkalina Gr34 Inf & Fin 4668 FileBgkalina Gr34 Inf & Fin 4668 Pclare Gr44 Inf & Fin 4670 Dwalters Gr33 Inf & Fin 4650 DatabaseLancashire Business School Staff Database
Database Terms Entity Attribute Key field
Database Terms (cont’d) Order Number Order Date Item Number QuantityAmount /10/ Attributes Entity - ORDER Key field Adapted from Laudon and Laudon (2000) Fields
Database Structures Hierarchical Network Relational Object Oriented
Hierarchical Records called ‘Nodes’ Top record – Root More specific at lower levels Parent/Child Little flexibility Quick processing of Large-Batch data
Network Records viewed in ‘sets’ Sets have one ‘owner’ and one or more ‘member’ records Record can have more than one owner Allows more complicated relationships AD Hoc reports difficult
Relational Most common structure Data stored as records in files Allows selection of individual records Analysis of records and files with others More flexibility Slower Large-Batch processing
Object Oriented Files such as images, text, sound and video treated as ‘objects’ Objects attached to data –Eg Blackpool Borough Council Allows easy access to hard-to-describe objects
Database Trends Distributed Databases Object-Oriented Databases Data Warehouses Databases on the Web
Data Management Database Management Systems (DBMS) Data Administration
Database Management Systems “Special software to create and maintain a database…” Laudon and Laudon (2000) 3 Components: Data definition language Data manipulation language Data dictionary
DBMS Major advantages: –Allows end user to manipulate data without the need of the IT specialist –Easy to understand queries –Retrieves data from database(s) (rather than the software doing it)
Data Administration “Responsible for the specific policies and procedures through which data can be managed as an organisational resource” Laudon and Laudon (2000) Develop information policy Planning for data Supervise database design and data dictionary development Monitoring data usage
The Legal Framework Background The Data Protection Act (1984) The Computer Misuse Act (1990) The Data Protection Act (1998) Regulation of Investigatory Powers Act (2000) Conflicts
Background (1970’s and 80’s) Organisations becoming more dependent in data Data becoming more complex Data security is an issue Legal loopholes regarding access to, and use of, organisational data
The Data Protection Act (1984) Principles –Legal obligation to keep accurate and secure data –Allows individual to seek recompense for distress due to inaccurate data Data Registrar –Notified with regard to data storage and usage
The Computer Misuse Act (1990) Created 3 new offences: Unauthorised access –‘Hacking’ and those abusing the access powers Ulterior intent –Using data for blackmail or fraud Unauthorised modifications –Includes planting viruses
The Data Protection Act (1998) Supersedes the DPA 1984 “an Act to make new provision for the regulation of the processing of information relating to individuals, including the obtaining, holding, use or disclosure of such information”
The Data Protection Act (1998) Supersedes the DPA 1984 Obligations on computer users: –Data is accurate and secure –Data readily available –No damage or distress caused –Notification to Data Registrar What data kept On whom data kept For what purpose Appropriate security
Principles Information: –Obtained and processed ‘fairly and lawfully’ –Held for ‘specific and lawful’ purposes –Accurate and up-to-date –Not held for longer than necessary Companies: –Not hold excessive or unnecessary data –Protect data Individuals: –Right to see, and have corrections made
Regulation of Investigatory Powers Act (2000) Allows governmental agencies to monitor organisational electronic communication Even if it is confidential Big Brother lives!
Conflicts Human Rights Act (1998) vs. RIP (2000) Despite all the legislation –“in 2000, the UK suffered the highest level of electronic security fraud in Europe” Financial Times: 29/3/01
Summary Data is stored in files which must be defined and organised logically for the databases to function correctly Databases must be managed effectively so as to maintain control over the data A legal framework exists to ensure that this is done Emergent technologies provide new opportunities for the use of databases
Fin Questions?