ACCEPTABLE USE POLICY
DATA PROTECTION
ACT 1998
Whenever an organisation is collecting data whether for example through questionnaires, application forms or attendance records, you need to consider the government guidelines regarding the auditing of information. The Data Protection Act 1998 regulates the collection, storage, use and disclosure of information relating to individuals. The Act states that personal data must be:
- Fairly and lawfully processed
- Processed for limited purposes
- Adequate, relevant and not excessive
- Accurate
- Not kept longer than necessary
- Processed in accordance with the data subject's rights
- Secure
- Not transferred to other countries without adequate protection
ACCEPTABLE
USE POLICY
A number of factors must be considered when monitoring computer usage of individuals within your organisation. Each organisation has a right and some even a duty to monitor computer usage to prevent it being used inappropriately. However, an individual also has a right to privacy. These two issues must be appropriately balanced to ensure that any data is monitored both fairly and lawfully.
An Acceptable Use Policy (AUP), which can be signed by users, is a way of detailing the ways in which the ICT resources can and cannot be used. An AUP might include information reminding users that logs are kept of websites visited or a pledge by users not to attempt to access unsuitable material.
By implementing a clear and open Acceptable Use Policy (AUP) stating that certain monitoring will be carried out will certainly help balance these issues. It is considered good practice to obtain consent from computer users by acquiring written consent to the AUP and by providing them with daily access to the AUP for example, showing the AUP at every login.
Examples of Acceptable Use Policies (AUPs) can be found via the links below;
Education
http://becta.org.uk/corporate/publications/index.cfm - Ref: BEC1-15402 (E-Safety)
Corporate & Business
http://www.businesslink.gov.uk/it -
IT & e-commerce (IT
security, staffing and legal issues - Staff and IT)
E-POLICY
E-risks are as prevalent in the modern electronic office as eMail is indispensable. For responsible organizations operating in the age of electronic communication and commerce, a written ePolicy is an essential business tool. For more information on E-Policies please click here.
MONITORING EMPLOYEES
IN THE WORKPLACE
Using Internet and e-mail facilities for personal use at work costs businesses in the UK nearly £10 billion each year! Coming from another angle, over 60% of personal on-line shopping is conducted at work. The abuse of Internet and e-mail use not only costs money but also slows down production. In reality, it is a case of theft. For more information on monitoring employees in the workplace please click here.
