User:Internetsafety123456789/sandbox

Computer Misuse Act

Computer Misuse Act is a law that was made in 1990 which is a law that fights against hacking and anything illegal that occurs on the internet. This act protects any information that has been hacked into. This helps protect companies’ computers information from being hacked and this law helps the company gain compensation from any hacking that has been made. This law also makes hackers aware that if they are caught there are consequences for breaking the law. The way the law works is if the hacker was to access the file without permission from the company then this is known as misuse as information because it has not been authorised by the company. This law is categorised into 4 offences: •	Unauthorised access to computer material/information. •	Unauthorised access with the intention to facilitate or commit a crime. •	Modifying computer information without authorisation. •	Using any resources that help in computer misuse. The consequences of each offence are sub categorised into its own penalty charge.

Data Protection Act

Data protection act is a law that helps the protection of information that is personal and is confidential. This law also gives employees and employers the obligation to have access to information their organisation holds on them and can also change information that is wrong or that needs updated. This law covers personal use of data and protects anyone else from viewing your information without proper authorisation, this means it seals the information that is personal to someone and does not want to be made public. An example of this would be in a school like Carlton Bolling College, the use of Sims for registers means they can also store information of each student for only teachers to see as the students don’t have access to this information and it is protected so no external computer can view this information. This law has 8 rules that have to be followed and if broken have consequences which will be highlighted in the case study. 1.	Personal data must be processed fairly and lawfully and should not be given to anyone that shouldn’t have it. 2.	Personal data should be used for a purpose and shouldn’t be used if not linked with its purpose. 3.	Personal data should be valid and relevant and not excessive in relation to the purpose or purposes. 4.	Personal data should be accurate and updated when needed. 5.	Personal data should not be kept and used longer than is necessary for its purpose or purposes. 6.	Personal data shall be processed in accordance with the rights of data under this Act. 7.	Personal data that is used unlawfully and without authorization will be taking the necessary measurements within the law. 8.	No data shall be transferred outside of the EU if suitable protection is not provided.