What laws and ethical issues govern the use of computers and data?
The main legislation governing computer use (data protection, the Computer Misuse Act and copyright law) and the ethical and cultural issues raised by computing.
A focused answer to the WJEC GCSE Computer Science Unit 1 content on legislation and ethics, covering data protection law, the Computer Misuse Act, copyright and intellectual property law, the difference between legal and ethical issues, and the cultural and privacy issues raised by computing.
Reviewed by: AI editorial process; not yet individually human-reviewed
Have a quick question? Jump to the Q&A page
Jump to a section
What this topic is asking
WJEC wants you to know the main legislation governing computer use (data protection, the Computer Misuse Act and copyright) and the ethical and cultural issues raised by computing. This is part of the Ethical, legal and environmental impacts content in Unit 1 of WJEC GCSE Computer Science (3500).
Data protection legislation
The Computer Misuse Act
Copyright and intellectual property
Legal versus ethical issues
Try this
Q1. Name the law that makes unauthorised access to a computer system a criminal offence. [1 mark]
- Cue. The Computer Misuse Act.
Q2. State one principle of data protection legislation. [1 mark]
- Cue. Personal data must be kept secure (or accurate, or used only for its stated purpose, or not kept longer than necessary).
Exam-style practice questions
Practice questions written in the style of WJEC exam questions on this dot point, with worked answer explainers. The year tag is the paper they imitate, not the source.
WJEC-style Unit 14 marksDescribe the purpose of data protection legislation and the Computer Misuse Act.Show worked answer →
A Unit 1 legislation question. Data protection legislation controls how organisations collect, store and use people's personal data, requiring it to be kept accurate, secure, and used only for stated, lawful purposes, and giving individuals rights over their own data (1 mark for protecting personal data, 1 mark for a principle such as kept secure or used only for its purpose). The Computer Misuse Act makes it a criminal offence to gain unauthorised access to computer systems or data (hacking), to access them intending to commit a further crime, or to make unauthorised changes to data, such as spreading malware (1 mark for unauthorised access, 1 mark for unauthorised modification/intent). Markers reward the protection of personal data and the criminalising of unauthorised access. A common error is to swap the two laws.
WJEC-style Unit 13 marksExplain what copyright legislation protects and give one example of breaking it in computing.Show worked answer →
A Unit 1 copyright question. Copyright (and intellectual property) legislation protects the work of creators, such as software, music, films, images and writing, giving them the right to control how their work is copied, shared and used (1 mark for protecting creators' work, 1 mark for the right to control copying/use). An example of breaking it is illegally copying or downloading software, music or films without permission (piracy), or using someone's code or images in your own product without a licence (1 mark for a valid example). Markers reward protecting creators' rights over their work and a sensible example of infringement. A common error is to confuse copyright with data protection, which is about personal data rather than creative work.
Related dot points
- The environmental impacts of digital technology (energy use, e-waste and resources) and its social impacts, including the effects of e-commerce.
A focused answer to the WJEC GCSE Computer Science Unit 1 content on the environmental and social impacts of digital technology, covering energy use, electronic waste and resource use, the social effects on work, communication and society, and the impact of e-commerce on shopping and the high street.
- Common cyber security threats, including malware, phishing, social engineering, brute-force attacks, denial-of-service attacks, SQL injection and data interception.
A focused answer to the WJEC GCSE Computer Science Unit 1 content on cyber security threats, covering malware and its types, phishing and social engineering, brute-force attacks, denial-of-service attacks, SQL injection and data interception, and how each threat works to compromise a system.
- Methods of protecting systems and networks, including firewalls, encryption, authentication, anti-malware, penetration testing, network policies and managing cookies.
A focused answer to the WJEC GCSE Computer Science Unit 1 content on protecting systems and networks, covering firewalls, encryption, authentication including strong passwords and two-factor authentication, anti-malware software, penetration testing, network and acceptable-use policies, and the role of cookies.
- Data security and integrity processes, including backups, archiving, and methods of keeping data accurate and consistent.
A focused answer to the WJEC GCSE Computer Science Unit 1 content on data security and integrity, covering the difference between backups and archiving, full and incremental backups, why data integrity matters, and the processes (such as validation, verification and access control) used to keep data accurate, consistent and safe.
- An overview of the practical assessment: Unit 2 (the on-screen computational thinking and programming examination) and Unit 3 (the non-exam software development project).
A concise overview of the practical assessment in WJEC GCSE Computer Science, covering Unit 2 (the on-screen computational thinking and programming examination) and Unit 3 (the non-exam software development project), how each is assessed, and how the Unit 1 theory underpins both.