Product Description
"Data Protection and Compliance in Context" provides a comprehensive tool to guide individuals through the jungle of data protection legislation that influence our daily business and personal lives. Data protection law covers the processing of information relating to individuals: something we all do. Every business and every person with a PC comes under the Data Protection Act 1998, an Act that has already had a massive effect upon our business and private lives. The concept of data processing is extremely wide, covering every conceivable thing that can be done on or towards personal data: from its initial collection right through to its final deletion, including its organization, alteration, use and disclosure. The main aim of data protection legislation is the achievement of balance between the interests of the individual against the power of the information age, in order to give individuals control over the 'data image' held about them. But, many of the law's requirements conflict with the natural uses of IT. "Data Protection and Compliance in Context" enables the safe navigation of this difficult area. "Data Protection and Compliance in Context" approaches data protection from three angles; the context in which data protection should be viewed, the content of data protection laws and data protection from the compliance perspective. In addition to key elements of the Data Protection Act (DPA), the influence of other supporting pieces of legislation are explained. It provides practical guidance on how managers and companies should go about the business of protecting data privacy against the wider backdrop of the DPA, human rights laws and freedom of information legislation. The compliance section is unique, providing data controllers (anyone responsible for the keeping and use of personal information on computer) with a platform for building internal compliance strategies. Importantly, it shows data controllers how they can realize a compliance strategy whilst rejecting the checklist approach that can ultimately lead the data controller into potentially costly dead ends. A practical book for those without any qualifications or specialist knowledge of law, "Data Protection and Compliance in Context" is trustworthy and accessible guide to data protection law, ideal for IT professionals, data protection officers, and small businesses.
Synopsis
"Data Protection and Compliance in Context" provides a comprehensive tool to guide individuals through the jungle of data protection legislation that influence our daily business and personal lives. Data protection law covers the processing of information relating to individuals: something we all do. Every business and every person with a PC comes under the Data Protection Act 1998, an Act that has already had a massive effect upon our business and private lives. The concept of data processing is extremely wide, covering every conceivable thing that can be done on or towards personal data: from its initial collection right through to its final deletion, including its organization, alteration, use and disclosure. The main aim of data protection legislation is the achievement of balance between the interests of the individual against the power of the information age, in order to give individuals control over the 'data image' held about them. But, many of the law's requirements conflict with the natural uses of IT. "Data Protection and Compliance in Context" enables the safe navigation of this difficult area.
"Data Protection and Compliance in Context" approaches data protection from three angles; the context in which data protection should be viewed, the content of data protection laws and data protection from the compliance perspective. In addition to key elements of the Data Protection Act (DPA), the influence of other supporting pieces of legislation are explained. It provides practical guidance on how managers and companies should go about the business of protecting data privacy against the wider backdrop of the DPA, human rights laws and freedom of information legislation. The compliance section is unique, providing data controllers (anyone responsible for the keeping and use of personal information on computer) with a platform for building internal compliance strategies. Importantly, it shows data controllers how they