Legislation

Legislation

Overview

  • Legislation in computer science refers to laws and regulations that govern the use of computers and the internet.
  • These laws aim to prevent misuse of technology and to protect individuals’ and organisations’ rights.

Computer Misuse Act 1990

  • The Computer Misuse Act 1990 is a UK law that makes certain activities illegal, such as hacking into other people’s systems and misusing software.
  • This Act makes unauthorised access and modification of computer material illegal.
  • It also includes laws against unauthorised access with intent to commit further offences and unauthorised modification of computer material.

Data Protection Act 2018

  • The Data Protection Act 2018 is a UK law that governs how personal data should be used by businesses and other organisations.
  • It ensures that personal data is used in a way that is fair, lawful, and transparent.
  • It also governs principles like data minimisation (only collecting data necessary for the task), accuracy (keeping data accurate and up to date), and storage limitation (only storing data for as long as necessary).
  • The Act also grants rights to individuals, such as the right to access their data, rectify incorrect data, and have their data erased in certain situations.
  • The Copyright, Designs and Patents Act 1988 is a law that provides protection for original literary, dramatic, musical, and artistic works.
  • This includes protection for software code and databases, making it illegal to copy or distribute without permission.
  • Altering, destroying, or defacing a work protected by copyright is also considered a crime under this Act.

Freedom of Information Act 2000

  • The Freedom of Information Act 2000 provides the public with access to information held by public authorities.
  • It aims to promote transparency and accountability.
  • However, there are exceptions for sensitive information, such as that which could compromise national security or individual’s privacy rights.

The GDPR (General Data Protection Regulation)

  • The GDPR is an EU legislation that was incorporated into UK law alongside the Data Protection Act 2018.
  • It provides stricter rules on data protection and gives individuals more control over their personal data.
  • It also mandates organisations to report any data breaches within 72 hours and ensures that consent for data collection is explicit.

Consequences for Breaking These Laws

  • Violations of these laws can result in significant fines, penalties, and in severe cases, prison sentences.
  • Companies may also suffer reputational damage for breaking these laws, leading to a loss of business or trust from customers.

Awareness and Compliance

  • It’s important for people and organisations using computers and the internet to be aware of these laws, so they can ensure they’re acting legally and ethically.
  • Organisations in particular need to ensure compliance with these laws to avoid penalties and protect their reputation.