Bezpieczeństwo danych i systemów informacyjnych w bibliotekach. Przegląd stanu prawnego

Abstract

Proper operation of the IT systems requires actions that allow their proper preparation and further use. These processes are based on international and national regulations. In terms of legal regulations, the paper presents bills, acts and regulations approved by the European Parliament, the Parliament (Sejm) of the Republic of Poland as well as the Council of Ministers. The article also describes the obligations and analyzes the actions undertaken by the University of Silesia as a result of those decisions. The presentation concerning international standards, regards issues associated with providing quality and security of ICT systems as the technological basis of the contemporary IT systems. The author presents documents regarding risk analysis and action in case of emergency situations, as well as theoretical studies, published as common documents, i.e. PN-ISO/IEC, ISO family or standard technical reports. A comparative analysis of documents is presented, especially in terms of common elements which have impact on practical solutions.