proyect 2
.docx
keyboard_arrow_up
School
Southern New Hampshire University *
*We aren’t endorsed by this school
Course
500
Subject
Law
Date
Jan 9, 2024
Type
docx
Pages
5
Uploaded by EarlMaskSandpiper33
1.
INTRODUCTION Ethics
“is the moral principle that governs or influences the behavior and actions of an individual. It can also be defined as the guiding principle which prescribes what an individual ought to and ought not to do.” So that is the definition of ethics. How does this compare to the law? First, we must define law. Law
“is an enactment in force in a state to resolve disputes and regulate behaviors, actions, and transactions of people in society.”
So, what is the difference between these two words in the world of business? The law is enforced
by a cofollow, or a state, and it is written for us the people to follow and is meant to protect us, and if we break the law, we are awarded the punishment that comes with it, ethics is also a set of moral rules that we should follow however these rules are not written in a law book and it is not enforced by no government, is an expectation from one person or one business to follow. For example, I paid $600 for an Xbox well the law says that I get the Xbox if I pay the money, I bought the Xbox from a yard sale and the person that sold it to me said that it should work because he got it recently and only used it once, so I get home I plug it in and it do not work it will not come on at all. So am I entitled to a refund, well no because according to the law I made a trade my money for an Xbox, but ethnically speaking I should, and the seller should because it is the right thing to do. So, what is social responsibility in the corporate world? So, let us define it first. social responsibility “refers
to the business practices of engaging in ethical behavior and in taking actions aimed at benefiting the society and that of the business,”
Many businesses are practicing social responsibility not only because it is the right thing to do but because it is looked for by consumers, and business realizes that it is more profitable to practice it. some corporations have made it a core practice in their business.
2.ANALYSIS So, in the situation of the small outdoor business called Mountain Top View in the project scenario there is a slogan that the business has set and is “We are committed to keeping our costumers information secured and protected” this business is owned by Clare Applewood, and it
was a simple store front which now had grown to the point where that they have and an online store. So, the business is booming then there is Carlos Rodriguez he oversees both stores and the online operations. Carlos and Clare make decisions together.
Steve is the company information technology lead, in simple terms, in charge of the company database's security. However, he discovers that there is a data breach, some customer's names, addresses, and phone numbers were accessed, but it was for customers that made online orders in
the first yearly quarter. However, Steve did not bring it to anyone's attention, and Carlos found out because he overheard Steve mention it. Steve’s reason is that he was able to quickly fix it.
So, what is the issue here? Well for one Steve did not communicate the data breach so now Mountain top view has broken state law. But according to an article by SPIRION, no federal laws govern data breach notification. However, there are state laws on how to handle data breaches and there is a list that says what must be reported and how long. Each state has something called the GDPR (general data protection regulations) which says that any data breach
must be reported to a supervisory authority and be reported to the GDPR within 72 hours (about 3 days). The punishment varies by state, it is fine, and they are hefty.
How does this affect the costumers and the future of mountain top view if not reported on time well for beginners costumers are not going to like that their information was breached and second and most importantly, the company was not transparent with them, consumers could begin to scrutinize the company thus losing customers and future ones too, that could cost a lot of money eventually and I dare say that it could cost the company itself. 2.
RECOMMENDATION.
I do not know what the policies for mountain top view are. But what I can suggest is that Steve needs to create a full report on the data breach as soon as possible and release a statement to the costumers and the rest of the public on the data breach and what mountain top view had done to remedy the situation, also he would need to report it to the GDPR if is within the 72-hour period that is being demanded to avoid a hefty fine. All the names, addresses, and phone numbers must be included along with the day it was breached. According to SPIRION there was a case with uber in 2016 where they had 600.000 drivers and 57 million users (about twice the population of Texas) accounts were breached, uber instead of reporting it they paid the perpetrator to keep quiet. In 2018 it was brought to light and uber was fined $148 million for violating the state data notification breach law. So, if Mountain Top View wants to avoid a massive fine from the state and keep some level of trust with their customers, they will have to be more transparent with the customers and hold their staff accountable for not reporting any data breach. Maybe set rules in the company itself that everyone must follow to prevent future breaches and force everyone to communicate any data breaches.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help