1. TB2 Lesson 5 Data Protection
GCSE ICT
TB2 Lesson 5
Data Protection

2. Who Knows What About Me
Make a list of all the organisations that hold personal data about you.
How this data was gathered?
Complete the table in
Who Knows What About Me.doc.

3. Be the end of the lesson 5 Exam says….
In this lesson students are learning about:
Data protection and computer misuse legislation
Threats to personal data
Methods of keeping data secure
At the end of this lesson students will be able to:
Outline the requirements of the Data Protection Act (DPA) and how this legislation is intended to prevent misuse of personal data by organisations
Give examples of non-compliance with the DPA
Describe threats to personal data and methods for keeping data secure
Exam says….
3.4: Threats to and methods of preventing misuse of personal information
3.5: The impact of relevant legislation
6.6: Legislation relating to the use of ICT, including copyright and data protection
6.8: Safe and responsible practice when using ICT
#captcha test #consumer #credit card #debit card #validation #verification

4. The Data Protection Act (DPA)10
The DPA sets rules for organisations that want to keep and process personal data.
Use the information provided on the BBC Bitesize site to find out more about the DPA.

5. The Data Protection Act
Specifies that personal data must be:
The data subject is entitled to:
fairly and lawfully obtained
relevant for the stated purpose
used only for the stated, lawful purpose(s)
kept up-to-date and accurate
kept for no longer than necessary
kept secure
be supplied with a copy of the data held about them
prevent processing likely to cause damage or distress
prevent their data from being used for direct marketing
compensation if they suffer damage as a result of any contravention of the Act
have inaccurate data removed or corrected

6. Failing to comply 5
Organisations are obliged to inform the ‘data subject’ of the purpose for which the data they are collecting will be used and to whom it will be disclosed.
Ask students to revisit the privacy policies they found out about and summarised for homework in Privacy Policies.doc.
Have these organisations complied with the law?

7. Failing to comply 5 Display Failing To Comply.doc.
Divide the class up into groups and ask each group to investigate one instance of failing to comply with the DPA and to populate the relevant row of the table.

8. Threats to customer data and how to avoid them40
Using the table in Threats To Data.doc.
Identify possible threats to the customer data collected by an online retailer,
Take feedback from the class and produce a collated version of the threat table.

9. The Computer Misuse Act10
Makes it illegal to gain unauthorised access to:
a computer's software or data (hacking) - including the illegal copying of programs
a computer's data with the intention of altering or deleting it – including planting viruses
programs stored on a computer in order to copy them illegally (software piracy)

10. Plenary 5
At the end of this lesson students will be able to:
explain why and how online retailers collect customer data
explain the purpose of a cookie and weigh up the benefits and drawbacks of cookies
explain what adware and spyware are and how users can protect themselves
give examples of personalised marketing techniques
Plenary
Remind students of the lesson objectives. How confident are they that the data held about them by their school is secure? Personal responsibility for their own data is also important. What will they do differently as a result of what they have learnt in this lesson?

11. Homework 5
Introduce the homework task, Offline or Online Delivery.doc. Make sure students understand what they have to do.