How not to get caught out and be IT compliant

Your data on MRCVSonline
The nature of the services provided by Vision Media means that we might obtain certain information about you.
Please read our Data Protection and Privacy Policy for details.

In addition, (with your consent) some parts of our website may store a 'cookie' in your browser for the purposes of
functionality or performance monitoring.
Click here to manage your settings.

Your data on MRCVSonline

Your privacy

The nature of the services provided by Vision Media means that we might obtain certain information about you.
Please read our Data Protection and Privacy Policy for details.

Google Analytics (Performance)

MRCVSonline uses Google Analytics to track which articles/features are most popular, so we can focus on these areas to improve the user experience.

Google analytics places four cookies on your browser (_utma, _utmb, _utmc, _utmt, _utmv, _utmz).

Google's cookie policy can be found here.

If you allow Google Analytics MRCVSonline will place a cookie named 'allowAnalytics'.
The 'allowAnalytics' cookie only contains the value 'YES' and will expire every 365 days.
The cookie will be forced to expire if you disable Google Analytics.

Allow Google Analytics Off

MRCVS user - (Strictly necessary)

The 'MRCVSuser' cookie is used to determine if you have logged into the website.

Logging into the website allows certain privileged features, for example, single click recording of CPD time. This cookie is destroyed each time you close your browser.

Preferences - (Strictly necessary)

The 'savedDataPreferences' cookie is set once you click 'Accept All', 'Reject Non Essential' or 'Save & Exit'.

The 'savedDataPreferences' cookie is only used to prevent you from being asked about your data preferences every time you visit a page.

The cookie will only contain the value 'YES' and will expire every 365 days.

PHPSESSID - (Strictly necessary)

The 'PHPSESSID' cookie is used to store your session ID.

Your session ID is used to allow interactions between the MRCVSonline website and your browser, necessary during account login and form submissions.

iPad app - (Functionality)

If the website is viewed on an iPhone, iPad or iPod touch, the user will be offered the functionality of the iOS application that we have developed.

If the user would like to view the website instead, a cookie will be placed with the value='1' with a month expiry date.
This will be used to check if the user would prefer to visit the website instead.

Third Party

To support our journalism, MRCVSonline will, from time to time, link YouTube videos, as well as use social media such as Facebook or Twitter.

MRCVSonline cannot control these cookies from outside sources and we advise you to check with the relevant third party for more information..

Posted: 6th April 2017

How not to get caught out and be IT compliant

Andrew Bricknell covered the basics of software licensing and data protection compliance.

Andrew Bricknell advises delegates at BSAVA Congress

Andrew Bricknell covered the basics of software licensing and data protection compliance within the practice arena in his lecture given for the Management Stream at BSAVA Congress.

He started by discussing software licensing pointing out that keeping within the law in this area is a minefield as the requirements are very confusing. He emphasised that you should always purchase from an authorised software provider and always read the small print when installing it.

Software licenses always have conditions applied to them, they will specify how many copies you may have and what sort of organisation can use the software. It is also important to have the correct license depending upon whether you are using traditional desktop/ server applications or cloud or hosted software via the internet.

It is important to buy software from a recognised source as illegal software can expose you to viruses and Trojans as well as prosecution if the original provider discovers that you are using their product illegally.

Consolidate all your software, keep a register and appoint a person responsible. Make your software work for you have a policy manual for employees, enforce the rules as well as continually updating them.

Andrew then went on to talk about data protection. The Data Protection Act 1998 is the key piece of legislation relating to how your business uses data and applies to personal information that you store in your systems. Any information you gather must be accurate, up-to-date and deleted when no longer needed.

Data must be secure at all times and only accessible to people who have the permission to see it. Individuals must also have permission to pass it on to another source and staff must not discuss it with people not allowed access to this confidential information.

Clients have the right to see their personal data but you can charge them £10 and have 40 days in which to provide it. They can also ask for their details to be altered.

A data breach can lead not only to business reputation damage but also legal action. Therefore it is important to practice good data protection - identify it, store it and be able to retrieve it. Put systems, procedures and policies in place to reduce the chance of a data protection breach.

Delegates were then told about the new EU General Data Protection Regulations which will come into force in May 2018. Even with Brexit on the horizon, these regulations will still affect UK businesses and we need to be prepared. Failure to comply could lead to fines of up to four per cent of a businesses global turnover.

The regulations dictate the type and the processing of personal information that a business can hold and they will affect every member of staff all of whom will have a responsibility for ensuring personal data protection within the business.

This is a very complex field and Andrew advised the audience to seek advice from their software providers so that they could ensure that they are fully compliant within the next 15 months.

Become a member or log in to add this story to your CPD history

RCVS Knowledge appoints Veterinary Evidence editor-in-chief

RCVS Knowledge has welcomed Professor Peter Cockcroft as editor-in-chief for Veterinary Evidence.

A world-renowned expert in evidence-based veterinary medicine, Prof Cockcroft will lead the strategic development and editorial quality of the open-access journal. He was previously in the role from 2017-2020.

Katie Mantell, CEO of RCVS Knowledge, said: "We are excited about the extensive knowledge of evidence-based veterinary medicine and clinical veterinary research that Peter brings, and we look forward to working with him over this next phase of the journal's development."

Click here for more...

Poultry health course returns after five year break
18th April 2024

SPANA appoints interim chair of trustees
18th April 2024

RCVS Knowledge appoints Veterinary Evidence editor-in-chief
17th April 2024

Dog saved from bottom of 15ft concrete shaft
17th April 2024

Wildebeest developing genetic issues from infrastructure
17th April 2024

CVS Group hit by cyber attack

CVS Group, which owns more than 450 veterinary practices in the UK, has been hit by a cyber attack.

In a statement, the group said the incident involved unauthorised external access to a limited number of its IT systems. As soon as the attack was discovered, the group took its IT systems temporarily offline, causing 'considerable operational disruption'.

It has warned that the security steps taken and ongoing plans to move its operational systems and IT infrastructure to the Cloud are likely to have an ongoing impact over a number of weeks.

Due to the risk that personal information was accessed, CVS has informed the Information Commissioner's Office. The company is working with third party consultants to investigate the incident.