The development and growth of innovative technological ideas has also led to the creation and enactment of numerous legislations relating to technology. These legislations have an impact on the way in which organisations develop and implement their technical and ecommerce strategies in relation to the manner in which they offer goods and services to potential customers and also how they use the technology in the internal environments.
- Information Security legislation has been drafted to identify minimum standards to be adopted in the protection of customer confidential information. Such legislation also stipulates the actions organisations need to take in the event that personal information is breached. Organisations can be held liable for spreading of virus where it can be shown that they have not been reasonable in their security implementations.
- Information technology and Cyber crime legislations such as the Computer Misuse Act and the convention on cyber crime allow for definition and identification of what constitutes unauthorised access to systems. They can also be used to provide guidelines on how to determine which activities constitute unauthorised access.
- The European Data Protection Directive forms a framework within which member countries implement data protection legislations. Data Protection provisions can further be seen in the Telecommunications Data Protection Directive.
- Transfer of personal data to third party countries that do not share the same values as Europe in relation to protection of private data is a key issue. Many member state countries oppose sending personal data to countries that do not conform to safe transfer and keeping of data or do not have the similar laws on protection of security of personal data.
- More recently the enactment of corporate governance legislation in the form of the Sarbanes-Oxley Act has also been responsible for organisations taking a closer look at the technical internal controls placed on their financial reporting systems.
- The abuse of corporate email has led to a number of organisations learning the hard way that email sent via company mail systems can lead to successful libel suits and has as such highlighted the need for acceptable use policies and user awareness programs
- With the introduction of the Electronic Commerce Directive and Consumer Protection Directives, organisations selling certain products at a distance have obligations they need to fulfil towards their customers
It has become paramount that organisations understand the implications of actions they take in their use of information technology especially when utilising the internet as a medium to conduct business.The Zylt Consulting legal compliance team are adequately placed to assist organisations comply with legislative and regulatory requirements in the development, management and commercial use of their technology and ecommerce environments.Our legal compliance service consists of:
- Identifying and advising on information technology legislation that affects your organisation
- Identifying and advising on legal obligations in the running of your information technology and ecommerce environments
- Identifying and advising on legal issues relating to data collection, processing and management
- Identifying legal aspects in relation to third party and partnership agreements
- Identifying and advising legal issues Hosting agreements
- Identifying and advising on technical measures in order to meet Sarbanes-Oxley 404 requirements
- Evaluation and advice on legal compliance in relation to adequacy of information Security measures
- Evaluating and writing information security policies and procedures
- Identifying how to mitigate liability in the event of an information security breach
- Training and awareness programs
|
