If these acts are very broadly all to do with security (see early posts for a more details description) and in fact any organizations that handles and depends on information.
How can a paperless system assist these regulations?
I think we have to look at the wider picture and understand why we use a paperless system to try to find an answer for this area.
It’s certainly not a case to say that we have to design a special area for this act to take place within a paperless system as nearly all companies will be connected to these acts in some way due to the fact we must handle peoples information just to employ and of cause some companies will require a more complex system if they depend on peoples information.
So do we design a paperless system to accommodate these acts or do we try to place these requirements into an already paperless system which could be better known as a Document Management System with added security due to the possible sensitivity of the information.
Some of the companies who have installed a respectable Document Management system will be happy with the outcome and to a certain degree this is more than acceptable to a normal company dependant of the type of information and type of company who has to use these regulations to a great degree, these two statements go without saying and are pretty common.
But could we say that a process of actions and processors within a system is the best answer, I think it’s more to do with we have to use what is available to us at the time of installation and what has been designed and already accepted.
It obvious that security has to play a big part if we intend to use the computer as an office or to assist a paperless system, that it the main point of the acts to protect people information.
One of the better areas of these acts is that is more to do with a code of practice/guideline rather than a certification standard, organizations are free to select and implement other controls, or indeed adopt alternative complete suites of information security controls as they see fit.
We can all agree that technology will grow and become better as technology grows in time, so could you say that this will always be open to debate in the areas of acceptability and how this will react to a paperless system.
We could say that this will always be the case, simple because technology will always grow but we do have to find that intermediate where a practical solution will be available to provide a practical answer.
- ISO/IEC 27001 Certification Awarded to MDSL (prweb.com)