Unit 1 LO3
It is most significant for Tesco to keep security and confidentiality in the business environment. Workplace security and confidentiality can be defined as keeping the employee, customer, and client information private. Usually, it is seen that Tesco takes a number of steps to ensure that client information remains confidential but when it comes to employee information, they may not be so particular. However, this thought process needs to be changed and the employers need to understand its importance, only then can they expect their staff to treat client and customer information with care.
3.1: Explain why security and confidentiality are important in a business environment?
It is most significant for Tesco to keep information safe and secure against probable threats: theft, espionage, and accidental/damaging remedies. Security in Tesco is also important because it can reassure employees and feel comfortable with extra security while accessing and exiting this capability.
In Tesco, protecting important data, confidential information, networks, software, equipment, facilities, the company’s assets, and personnel is what security is about. There are two factors by which security can be affected. First attack by nature like a flood, fire, power fluctuation, etc. Though the information will not be misused, it is very hard to retrieve it and may cause permanent loss of data. The second is an attack by the malicious party, which includes terrorism, vandalism, and theft. All the organization faces different kinds of security threats (David, 2017).
Physical security is very important for Tesco. It is necessary if they do not want anyone to snatch away their information or destroy it, in case of natural calamity. The reason could be anything, the attacker doing it for personal gain, financial gain, for seeking revenge or they were the vulnerable target available. If this security is not maintained properly, all the safety measures will be useless once the attacker gets through by gaining physical access. Though physical security is proving to be challenging than in previous decades as there are more sensitive devices available (like USB drives, laptops, smartphones, tablets, etc.) that enables the stealing of data easy and smooth ( Tesco, 2018).
Our Recommended Resources:
As mentioned before there are fewer measures used for security and no one pays heed to it as attention is mostly on technology-oriented security in Tesco. This slip-up gives the attacker a chance to exploit data or open ports. The scheme plans of penetrating the network through unauthorized means. Though there are internal threats too, for example, employees that have access to all the areas of the company can steal the assets with ease in Tesco.
Confidentiality is of paramount importance for Tesco. It is the employee’s responsibility to treat all the information in the workplace with care and caution. An employee should be prudent enough not to disclose any information that the organization considers sensitive and confidential, to a third party, until and unless the employee has consulted and taken permission from his supervisor regarding the same (Tesco, 2018). Also, one should refrain from sharing any personal details with fellow colleagues at work. This helps to maintain a professional attitude at work.
An employee of Tesco should know what files or materials he is permitted to access in the office and he should adhere to that. Under no circumstances should these files be shared or given to unauthorized people. This is because if it reaches the wrong hands, it can be considered as a breach of confidentiality and the employee may even be dismissed for it. Also, employees should not discuss any business dealings with clients, outside work (Sam Ashe-Edmunds, 2018).
In Tesco as far as the employer is concerned, any personal or professional details of employees should be handled with prudence. Data related to the personal details of an employee, application forms, references, health data, salary structure should be kept well under wraps because if they are misused, it can lead to discrimination in the workplace. Only staff members of the HR department who require the data for certain purposes should be given access to the personal files of employees (Tesco, 2018).
Maintaining confidentiality is important for various reasons for Tesco. The client or the customer of Tesco can file legal suits against the organization if they feel that some secret information regarding them has been revealed by the organization or its employees. This can have negative repercussions on the business’s reputation as well. So it becomes very important for the employees as well as the organization to protect the information in the workplace.
3.2: Explain the possible consequences of failing to maintain security and confidentiality in line with requirements.
Poor security at Tesco’s business can lead to disastrous results for them, their customers, and their suppliers. With more and more businesses relying on technology to transact business, digital security is becoming a significant concern even for small, one-location businesses (Sam Ashe-Edmunds, 2018). Addressing safety and security issues on their property and throughout their communications and electronic transactions will help them avoid problems that can hurt them and their stakeholders (Ghady, 2017).
In Tesco, dark stairwells, poorly lit storage rooms and remote parking lots are prime areas for criminals to rob or assault their employees, customers, and delivery people, and commit acts of vandalism. Team up with a security consultant, their insurance company, and/or an attorney who specializes in premises liability to walk their property and determine where they can increase the safety of the people with whom they do business (The Digital Economy Act 2017). A lack of security cameras, entry badges, inventory systems, alarms, and other means of protecting their assets can cost them significant money. In some instances, they might have assets siphoned on an ongoing basis, not knowing they are missing until it’s too late to recover them.
Work with an information technology company to create security measures that not only keep outside hackers at bay but also to prevent their employees from snooping where they shouldn’t and former employees from entering their computer network or buildings after they’re terminated. If customers, clients, vendors, and suppliers can prove that they did not take reasonable care with their property or data, or to protect them from harm, they can suffer legal damages that can shut them down (Ghady, 2017). Even if a judgment is small or a plaintiff’s suit fails, the resulting bad public relations they receive can make customers less likely to work with them. Review your relationships with external stakeholders and consider what harm their actions might cause them. Take steps to safeguard the data and personal safety of all of these people and companies to improve their security and reduce their liability (Tesco, 2018).
Confidentiality in employment is important regardless of whether Tesco has signed a written confidentiality agreement. Tesco can also sue an employee for failing of confidentiality, and if successful at trial, the employer can obtain monetary damages from the employee. This means the employee will have to pay money to the employer, especially if the employee’s fail caused identifiable monetary damage to the employer (GOV.UK, 2018). From a long-term perspective, failure of confidentiality can permanently tarnish an employee’s reputation (Tesco, 2018).