My understanding about monitoring is similar to that given by
Phil Brady.
Additional points:
1) Watch out for differing legal situations in the (increasingly
devolved) UK legal structures. For example, I believe that
Scotland has some different definitions, etc. in place.
2) I believe that it is also accepted wisdom is to make as early
as possible any decision about whether to involve the police
(for example, in serious breaches of the Computer Misuse Act).
The police have advised previously of the difficulties in
dealing with evidence which has been deliberately collected by
the University rather than themselves.
3) The lack of "routine" monitoring should not lessen the
importance of ensuring that staff and students understand that
the University may monitor (including reading) email or other
information on its IT systems if it feels it is appropriate to
do so for specific purposes (performance, legal, complaints,
etc). (Please shout if I have got this one wrong!)
- Richard Murphy
Richard Murphy [log in to unmask]
Director 01382 344444
IT Services 01382 345505 (FAX)
University of Dundee
DD1 4HN
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
|