| EU
Data Protection Directive – 95/46/EC |
This directive covers the use of data held on private individuals within the EU. It mandates that data must be handled fairly and openly, limited to the purpose for which it was gathered, stored securely and limited in its distribution. Individuals have rights to access and redress for any inaccuracies.
This act is augmented by two other acts specific to the telecommunications and electronic communications sectors which look at the automatic gathering of data and its uses.
US companies can comply through the US “Safe Harbor”
scheme. |
Security
Database
Content Management
Storage
Backup
Disaster Recovery
CRM Systems
Document Management |
Operational
Operating and IT solutions emerging. |
| EU Electronic Data
Directive |
Requires Member states to allow filing of company records electronically. Additionally requires certain company particulars (e.g. registered address, registration number) to be all company documents, including electronic submissions, and on company websites. |
Updates to accounting packages, Data Storage and Data Management. |
Operational
IT systems being implemented. |
| EU Audit
Directive |
A new Directive on statutory audit in the EU. Objectives are to ensure that investors and other interested parties can rely fully on the accuracy of audited accounts and to enhance the EU's protection against the type of scandals that recently occurred in companies such as Parmalat and Ahold. |
Information lifecycle management (ILM)
Storage
Archive
Disaster Recovery
Email Management
Email Content Audit
Database
Data Mining Tools
Risk Assessment and Management Tools
Point Solutions |
Deadline
Review under way. |
| EU ICT
Policy Instrument 2006 |
The eEurope
2005 action plan is being updated.
Designed to stimulate demand as well as
enhance the availability of services the
policy instrument will feature fewer
actions than its predecessor, but will
focus on providing a more coherent
framework. |
Communications
Internet services/technologies
Security and user identification
Storage |
Deadline
In review. |
|
EU
Working Time Directive |
EU legislation designed to prevent damage to the health of workers through working excessive hours. Effects all companies of all sizes, requires various collection of data. |
Data Storage
Data Management
CRM
Various Applications |
Operational
In operation and IT systems in procurement, usually adapting ERP HR system. |
|
Declaration
on Combating Terrorism [Data Retention
Directive] |
A package of measures from EU ministers agreed in March 2004 as a response to the Madrid bombings. Measures include retention of communications data, biometric data recording, inter-governmental sharing of data on criminal activities (criminal records, forensics, intelligence etc). |
Biometric Devices
Database Systems
Security
Networking
Telecoms
Storage
Processing Power |
Deadline
EU package of new measures being released in stages. Implemented cross-border sharing of data on terrorist offences and retention of communications traffic by service providers. |
|
The
Companies (Audit, Investigations and
Community Enterprise) Act |
The Act is designed to improve the reliability of financial reporting and reinforce auditor independence and auditor regulations. Includes the need to ensure disclosure of all relevant information to auditors, increased inspection with more detailed reports. |
Storage
Disaster Recovery
Database
Changes to accounting packages / software systems
Report Generators |
Operational |
|
Environmental Information Regulations
(2004) |
This law, which compliments the FOI Act, gives the public the right to request environmental information. Manufacturers, in particular, will have to make data available on areas such as, pollution, carbon emissions, noise, radiation, the use of genetically modified organisms and health & safety information. |
Workflow
Database
Security
Storage
Data Mining
Portal
Communications
Networking
Backup
Disaster Recovery |
Operational
Operating and IT solutions emerging. |
|
Freedom of Information Act (FoI) |
The
FoI Act affects personal data security
and availability in the Public Sector.
The Act gives the right to any person to
see information held on them. |
Security
Data Management (biometrics
data-announcement of intent to use)
Data Recovery Tools
Data Mining
Unstructured Data Repository and
Recovery |
Operational
Operational and IT solutions
anticipated. |
|
Data Protection Act |
Affects all companies, which must comply
with the 8 enforceable principles of
good practise in management of personal
data. Takes precedence over FoI Act. |
Security
Data Management
CRM
Workflow
Document Management Systems |
Operational
Operational and demand for IT solutions
as part of an integrated |
|
Civil Contingency Act |
Replaces the existing Emergency Planning
legislation and mandates planning for
‘emergencies’ by many public sector
bodies as well as Utilities, Police
Forces and Transport organizations. The
Act requires cooperation between
organizations and disclosure of
information to emergency bodies. |
Communications
Networking
Database
Security
Storage
Backup
Disaster recovery
Possibly twin site facility |
Operational
Operational and IT solutions demand
emerging. |
|
UK
Citizen Database |
The
UK Office for National Statistics (ONS)
has initiated the procurement process
for the trial phase of its Citizen
Information Project.
The aim of which is to deliver an
electronic population register that
would support a government-wide
data-sharing scheme. |
ONS
looking to identify and short-list a
range of companies that could supply a
variety of approaches to data analysis
and matching.
Longer-term implications for suppliers
to public sector organizations of many
types: – Networking, Security, Data
Protection, Integration with existing
systems. |
Operational
Under review. |
| BVPI 157 |
UK local authorities are subject to a Best Value Performance Indicator (BVPI) for e-government. BVPI
157 requires all local authorities 'to
measure the number of types of
interaction that are enabled for
electronic delivery as a percentage of
the types of interaction that are
legally permissible for electronic
delivery'. |
Portal
Storage
Networking
Security
Processor Power |
Deadline
UK Government aiming to offer 100% of public services electronically where this is feasible.
Over 800 services identified and to be provided electronically by local authorities, together with 10 interaction types including on-line applications, information and electronic payments. |
ISO 20000
IT Service Management Standard |
ISO 20000 comprises two parts: ISO 20000-1 is the 'Specification for Service Management, and ISO 20000-2 is the 'Code of practice for Service Management'.
Together, these form a top-down framework to define the features of service management processes that are essential for the delivery of high quality services.
ISO 20,0000 allows IT organizations to formally certify their IT services, using ITIL [Information Technology Infrastructure Library] global best practice for IT service delivery. |
Security Management
Storage Management
Business Application Management
Server, Network & Device Management |
Operational
Rapidly adopted as the international standard for IT Service Management based upon ITIL based upon substantial TCO reduction as business case. |
|
ISO 27001
Information Security Standard |
ISO 27001 is the formal standard against which organizations may seek independent certification of their Information Security Management Systems to reduce businesses’ information security vulnerability. |
ERP solutions
IT Security Applications and services |
Operational
Rapidly being adopted worldwide as the
standard for business’ information
security. |
|
IAS (International Accounting Standards) |
International standards on accounting and the regulation of financial result calculation. Designed to improve transparency and represent a step towards a common global accounting standard. |
Enterprise
integration systems
Data gathering systems. |
Operational
The legislation will require significant
investment in appropriate systems to
facilitate internal reporting and data
gathering. |
