Presentation is loading. Please wait.

Presentation is loading. Please wait.

e-security in an e-school 20 September 2008

Published byLiani Jayadi Modified over 5 years ago

Similar presentations

Presentation on theme: "e-security in an e-school 20 September 2008"— Presentation transcript:

1 e-security in an e-school 20 September 2008
Louise Bennett British Computer Society Chairman Security Forum Specialist Panel

2 Differences between paper records of personal data and computer records
The quantity of retained data The number of individual’s data in the database The attitude of data users to electronic data

3 The exploding digital universe – IDC Report – Some facts:
Data volumes from exabytes to ,700 exabytes Half needs high standards of security Over one third compliance intense 20-40% preservation intense

4 Information should be like
A shaft of sunlight cutting through fog

5 Some official e-records about children The Children’s Index
Who? Everyone under 18 What? Record of all agencies contacted from birth (excluding case records). Why? To enable sharing

6 Some official e-records about children Contactpoint
Who? Children birth to 19 What? Contact with services Why? Response to Victoria Climbie Enquiry, to prevent child abuse.

7 Some official e-records about children eCAF
Who? About 50% of children What? In depth personal assessment of every child receiving services over and above basic medical care and education Why? To help professionals working with children

8 Some official e-records about children MIAP on-line cv
Who? Every 14 year old in England (from Feb 08) What? Exam results, personal learner number and personal details Why? LSC tracking system for employers

9 Not if all the personal data is properly looked after, but
Does it matter? Not if all the personal data is properly looked after, but some people are concerned Action Rights for Children (ARCH)

10 Take data guardianship seriously
What can we do? It is about “culture” Take data guardianship seriously Treat everyone else’s personal data as you would like yours to be treated

11 The DPA principles Process fairly and lawfully
Obtain for specific purposes Adequate, relevant, not excessive Accurate and up to date Not kept longer than necessary Processed in accordance with DPA rights Kept securely Not transferred out of EEA without protection

12 BCS information governance and data guardianship themes cover:
Accountability Visibility Consent Access Stewardship

13 Extend the DPA principles to include:
Consent of data subjects for data sharing Right of revocation of consent and redress Sound, published data governance principles Right to limit access Original collector has stewardship if shared Ownership and risk explicit in the “chain of sharing”

14 Risk combines likelihood and impact
IA Risk Assessment: Risk combines likelihood and impact Does impact mean the same to a minister concerned for his reputation, a school concerned for its place in the league tables and a parent concerned for his child’s privacy and long term well being?

15 Next Steps More public debate Improved professionalism for systems
Instigate a cultural change in those handling personal data in which the impact on citizens is the primary concern Openness on what personal data is held, where and why Refine and extend the Data Guardianship Principles An “Information Governance Code” with guidance on data handling good practice Effective audit and penalties for failure

Download ppt "e-security in an e-school 20 September 2008"

Similar presentations

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.

Administrative Systems and the Law What you need to know to produce an oral presentation for Unit 7 When the presentations will take place Resources you.
Data Protection.

Data Protection.
What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.

What does the Data Protection Act do? It sets standards which must be satisfied when obtaining, recording, holding, using, disclosing or disposing of.
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales  2074 6677  2074 5626 

DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.
The Data Protection Act

The Data Protection Act
Data Protection for Church of Scotland Congregations

Data Protection for Church of Scotland Congregations
Implementation of Security and Confidentiality in GP Practices.

Implementation of Security and Confidentiality in GP Practices.
Care.Data an ICO Update EMIS National User Group Conference East Midlands Conference Centre Nottingham 3 rd October 2013 Lynne Shackley Lead Policy Officer.

Care.Data an ICO Update EMIS National User Group Conference East Midlands Conference Centre Nottingham 3 rd October 2013 Lynne Shackley Lead Policy Officer.
The Data Protection Act 1998 The Eight Principles.

The Data Protection Act 1998 The Eight Principles.
Professional Values and Basic Business Legislation.

Professional Values and Basic Business Legislation.
Data Protection: An enabler? David Freeland, Senior Policy Officer 23 October 2014.

Data Protection: An enabler? David Freeland, Senior Policy Officer 23 October 2014.
EU Data Protection IT Governance view Ger O’Mahony 12 th October 2011.

EU Data Protection IT Governance view Ger O’Mahony 12 th October 2011.
Integrated Working IN Salford

Integrated Working IN Salford
The Data Protection Act (1998). The Data Protection Act allows you to Check if any organisation keeps information about you on computer or in paper form.

The Data Protection Act (1998). The Data Protection Act allows you to Check if any organisation keeps information about you on computer or in paper form.
Data Protection: What You Need to Know Shauna Dunlop 1 July 2015.

Data Protection: What You Need to Know Shauna Dunlop 1 July 2015.
Sharing Pupil Data North Yorkshire County Council Schools Conference Robert Beane and Louise Jackson.

Sharing Pupil Data North Yorkshire County Council Schools Conference Robert Beane and Louise Jackson.
What is personal data? Personal data is data about an individual which they consider to be private.

What is personal data? Personal data is data about an individual which they consider to be private.
Everyone has a duty to comply with the Act, including employers, employees, trainees, self-employed, manufacturers, suppliers, designers, importers of.

Everyone has a duty to comply with the Act, including employers, employees, trainees, self-employed, manufacturers, suppliers, designers, importers of.
12/12/2015 Data Protection Act 1998. 12/12/2015 The DP Act A law that protects personal privacy and upholds individual’s rights Anyone who handles personal.

12/12/2015 Data Protection Act /12/2015 The DP Act A law that protects personal privacy and upholds individual’s rights Anyone who handles personal.

Similar presentations

Ads by Google