This new pocket guide in the Practical IT Governance series, provides initial guidance to all who are concerned with IT regulatory compliance in the UK. Here are the contents of the book.



A companion Pocket Guide provides guidance on North American IT regulatory compliance.



A key challenge for all IT management teams is to ensure that the organization avoids breaches of any criminal or civil law, as well as any statutory, regulatory or contractual obligations, and of any security requirements.



Everyone in the IT organization (and outside it) needs to have an understanding of the legislation that applies to your organization. This Pocket Guide gives handy, easily-understood guidance on the key aspects of all the key regulations.



This pocket guide includes coverage of key UK IT and information-related regulation, such as:

FSA Regulations
Basel2
MiFID
Data Protection Act 1998
Privacy and Electronic Communications Regulations 2003
Freedom of Information Act 2000
Computer Misuse Act 1990 (as updated in 2006)
Copyright, Designs and Patents Act 1998
Electronic Communications Act 2000
Regulation of Investigatory Powers Act 2000
Human Rights Act 2000
Disability Discrimination Act 1995
Safeguarding of organizational resources
Everyone in the organization should be aware of their specific responsibilities under these acts. The specific controls and individual responsibilities to meet these requirements should be documented and kept up-to-date, and should be linked to the list of all the data assets and processes in the organization, together with their ownership details.

Foreign legislation may also be applicable to the operations of the organization; in particular, legislation passed in America (such as the Digital Millennium Copyright Act and others, discussed below) may affect the international operations of UK-based organizations or may be the basis on which a US-based organization takes action against a UK-based one.

This Pocket Guide is the practical starting point for everyone.