Information Privacy and Data Collection

Questions and Answers

It is illegal for employers to monitor their employees' use of technology.

False (B)

What is employee monitoring primarily used for?

• Increasing vacation time
• Promoting team bonding
• Encouraging creativity
• Observing and recording employee technology use (correct)

What is content filtering?

The process of restricting access to certain material.

Web filtering software restricts access to specified ______.

websites

Which of the following is a common digital security risk?

Software theft (B)

Content filtering is not utilized by businesses to monitor employee internet use.

False (B)

Name an ethical issue related to information privacy.

Unauthorized access to personal information.

Match the following security risks with their descriptions:

Cybercrime = The act of committing illegal activities online Vandalism = Deliberate destruction of property Information theft = Stealing personal data or sensitive information Hardware theft = Stealing physical computer components

What does information privacy allow individuals and companies to do?

Restrict the sale of their information (A)

Websites do not collect any data about users.

False (B)

What is a cookie in the context of information privacy?

A small text file stored on a computer by a web server.

Employers may monitor your ______ usage and email messages.

computer

Match the following actions with the corresponding information privacy implications:

Filling out a form = Data is collected Creating a social media profile = User data is registered Registering a product warranty = Consent for data usage Using a cookie = Tracking user behavior

Which of the following is NOT a reason websites use cookies?

Enhance website security (D)

Only companies have a right to restrict the use of their information.

False (B)

Name one way information about you can be stored in a database.

Filling out a printed or online form.

What is the purpose of creating a backup?

To ensure data is available if the original is lost or damaged (A)

Off-site backups can only be stored on the same device.

False (B)

Name one type of backup category.

Full

A backup should be made to ensure data is ______ if the original is lost.

available

Which of the following is NOT a category of backups?

Compression (A)

Match the backup types with their characteristics:

Full = Backs up all selected data Differential = Backs up data changed since the last full backup Incremental = Backs up data changed since the last backup Continuous data protection = Real-time data protection

Cloud storage is a form of off-site backup.

True (A)

What are the potential security risks posed by wireless access?

Unauthorized access to networks and confidential data.

What is unauthorized access?

Using a computer or network without permission (C)

Unauthorized use refers to using a computer for legal activities.

False (B)

What measures do organizations take to prevent unauthorized access?

Acceptable use policy and disabling file and printer sharing.

Access controls define who can access a computer, device, or network, when they can access it, and what actions they can take while accessing it, which includes the use of a _____ and _____ for security.

user name, password

Match the terms related to unauthorized access and use:

Unauthorized Access = Use of a computer or network without permission Unauthorized Use = Use of a computer for unapproved activities Access Controls = Define who can access a computer, device, or network Audit Trail = Records successful and unsuccessful access attempts

Which of the following is NOT a use of digital forensics?

Education (B)

Software theft only involves the physical stealing of software media.

False (B)

What is the purpose of the software product's identification number during activation?

To associate the software with the specific computer or device it's installed on.

A ___ agreement grants the user the right to use software.

license

Match the actions related to software theft to their descriptions:

Stealing software media = Taking physical copies of software without permission Illegally registering a program = Activating software without owning a valid license Intentionally erasing programs = Deleting software to prevent its use Illegally copying a program = Creating duplicate software without authorization

What process do manufacturers typically incorporate to prevent unauthorized software installations?

Activation process (D)

Digital forensics is exclusively used for criminal investigations.

False (B)

Name two areas that utilize digital forensics.

Law enforcement and military intelligence.

Flashcards

Information Privacy

The right to control how personal information is collected, used, and shared.

Data Collection

Gathering information from users, like filling forms or online profiles.

Cookies

Small text files websites store to track users, remember logins and for targeted ads.

Employee Monitoring

Tracking employee computer usage, emails, and websites.

Content Filtering

Restricting access to specific content, often by companies or schools.

Unauthorized Access

Using a computer or network without permission.

Unauthorized Use

Using a computer for illegal or unapproved activities.

Acceptable Use Policies

Rules for how computers and networks are used in a company.

Access Controls

Rules determining who can access a device, network, or data.

Audit Trail

A record of all access attempts, both successful and unsuccessful.

Digital Forensics

Investigating cybercrime by discovering evidence

Software Theft

Stealing or illegally copying software.

License Agreement

The legal agreement allowing software use.

Digital Security Risks

Threats to online systems, including cybercrime and hardware theft.

Backup

A duplicate copy of data used for restoring lost data.

Full Backup

A complete copy of all data.

Differential Backup

Copies changes after the last full backup.

Incremental Backup

Copies changes since the last backup (full or incremental).

Selective Backup

Choosing specific files for backup instead of all.

Continuous Data Protection

Automatic backup of data as changes happen.

Cloud Storage

Remote storage of backups accessible through the internet.

Three-Generation Backup Policy

Backup hierarchy storing older data for restoration.

Wireless Access Points (WAPs)

Devices enabling wireless internet access.

Off-site Backups

Backups stored separately from the main devices.

Study Notes

Information Privacy

• Information privacy is the right for individuals and companies to control the collection, use, and dissemination of personal information.
• Databases store vast amounts of online data.
• Websites collect user data for ad personalization and personalized emails.
• Employers may monitor employee computer usage and email communications.

Data Collection

• Data is collected when individuals fill out forms, create online profiles, or register product warranties.
• Cookies are small text files stored on a user's computer by websites to store user names, passwords, track user activity, and target advertisements.

Employee Monitoring

• Employee monitoring involves using computers, mobile devices, or cameras to observe, record, and review employee technology usage, including communications, keyboard activity, and websites visited.
• Employer monitoring software is readily available and legal for employers to use.

Content Filtering

• Content filtering restricts access to certain material.
• Businesses often use content filtering.
• Web filtering software blocks access to specific websites.

Unauthorized Access and Use

• Unauthorized access is using a computer or network without permission.
• Unauthorized use involves using a computer or its data for unapproved or potentially illegal activities.
• Organizations help prevent unauthorized access and use with acceptable use policies and disabled file and printer sharing.

Access Controls

• Access controls determine who can access a computer, device, or network, when they can access it, and what actions they can take while accessing it.
• A record of successful and unsuccessful access attempts is maintained as an audit trail. This trail includes user name and password.

Digital Forensics

• Digital forensics involves discovering, collecting, and analyzing evidence found on computers and networks.
• Digital forensics is used in various areas like law enforcement, criminal prosecution, military intelligence, insurance agencies, and information security departments.

Software Theft

• Software theft involves stealing software media, illegally registering and activating software, intentionally erasing programs, and illegally copying software.
• Software manufacturers use activation processes to ensure software is not installed on more computers than legally licensed.
• Activation processes require users to provide the software product’s identification number to associate the software with a computer or mobile device.
• A license agreement grants the right to use software.

Digital Security Risks

• Online security risks include cybercrime, cybercriminals, unauthorized access and use, software theft, information theft, hardware theft, vandalism, and system failures.
• These risks can be mitigated through a variety of backup strategies and methods for securing wireless communications.

Backing Up - The Ultimate Safeguard

• A backup is a duplicate copy of a file, program, or media used if the original is lost, damaged, or destroyed.
• Off-site backups are stored in a location separate from the computer or mobile device.

Types of Backups

• Full Backup: A complete copy of all selected data.
• Differential Backup: Copies all changes made since the last full backup.
• Incremental Backup: Copies only the changes made since the last backup, either full or incremental.
• Selective Backup: Allows users to select specific files or folders to back up.
• Continuous Data Protection: Continuously monitors changes and automatically backs up any changes.
• Cloud Storage: Stores backups on remote servers accessible through the internet.

Three-Generation Backup Policy

• Uses a hierarchy of backups with three levels: Grandparent (oldest), Parent (middle), and Child (newest).
• This policy allows for data restoration from multiple points in time.

Wireless Security

• Wireless access points (WAPs) pose additional security risks as perpetrators can connect to others' networks for free internet access or confidential data.
• Some perpetrators connect through unsecured WAPs or combination router/WAPs.

Description

This quiz explores essential concepts related to information privacy, data collection methods, and employee monitoring. It covers how personal information is managed and the implications of data collection practices. Test your knowledge on these important topics in today's digital world.