Professional Documents
Culture Documents
Ais Chapter 3
Ais Chapter 3
Ais Chapter 3
such technology
Ethical standards are derived from societal mores and Three levels of computer ethics
deep-rooted personal beliefs about issues of right and 1) Pop computer ethics is simply the exposure to stories
wrong that are not universally agreed upon. and reports found in the popular media regarding the
Ethics - pertains to the principles of conduct that individuals good or bad ramifications of computer technology.
use in making choices and guiding their behavior in 2) Para computer ethics involves taking a real interest in
situations that involve the concepts of right and wrong. computer ethics cases and acquiring some level of skill
Business ethics involves finding the answers to two and knowledge in the field
questions: 3) Theoretical computer ethics, is of interest to
(1) How do managers decide what is right in conducting multidisciplinary researchers who apply the theories of
their business? philosophy, sociology, and psychology to computer
(2) Once managers have recognized what is right, how do science with the goal of bringing some new
they achieve it? understanding to the field.
Ethical issues in business can be divided into four areas: Several issues of concern for students of accounting
information systems
Equity Executive Salaries Comparable 1) Privacy - People desire to be in full control of what and
Worth Product Pricing how much information about themselves is available to
Rights Corporate Due Process Employee others, and to whom it is available.
Health Screening Employee Privacy This raises the issue of ownership in the personal
Sexual Harassment Diversity information industry
Equal Employment Opportunity 2) Security (Accuracy and Confidentiality)
Whistle-Blowing Computer security is an attempt to avoid such
Honesty *Employee and Management undesirable events as a loss of confidentiality or data
Conflicts of Interest integrity.
*Security of Organization Data and
3) Ownership of Property
Records
*Misleading Advertising 4) Equity in Access
*Questionable Business Practices in 5) Environmental Issues
Foreign Countries *Accurate 6) Artificial Intelligence
Reporting of Shareholder Interests 7) Unemployment and Displacement
exercise of Political Action Committees 8) Misuse of Computers
corporate Workplace Safety
power Product Safety Sarbanes-Oxley Act (SOX), is the most significant
Environmental Issues Divestment of securities law since the Securities and Exchange
Interests Corporate Commission (SEC) Acts of 1933 and 1934.
PoliticalContributions Downsizing
and Plant Closures Section 406—Code of Ethics for Senior Financial Officers
Business organizations have conflicting responsibilities to Section 406 of SOX requires public companies to disclose
their employees, shareholders, customers, and the public. to the SEC whether they have adopted a code of ethics
Seeking a balance between these consequences is the that applies to the organization’s chief executive officer
managers’ ethical responsibility (CEO), CFO, controller, or persons performing similar
functions.
Ethical principles
PROPORTIONALITY. The benefit from a decision must A public company may disclose its code of ethics in several
outweigh the risks ways:
Justice. The benefits of the decision should be (1) included as an exhibit to its annual report,
distributed fairly to those who share the risks. (2) as a posting to its Web site, or
Those who do not benefit should not carry the (3) by agreeing to provide copies of the code upon request.
burden of risk.
Minimize risk. Even if judged acceptable by the Whereas Section 406 applies specifically to executive and
principles, the decision should be implemented financial officers of a company, a company’s code of ethics
so as to minimize all of the risks and avoid any should apply equally to all employees.
unnecessary risks.
Top management’s attitude toward ethics sets the tone for
COMPUTER ETHICS - analysis of the nature and social business practice, but it is also the responsibility of lower-
impact of computer technology and the corresponding
level managers and nonmanagers to uphold a firm’s ethical 2. Material fact. A fact must be a substantial factor in inducing
standards. someone to act.
3. Intent. There must be the intent to deceive or the knowledge that
one’s statement is false.
The SEC has ruled that compliance with Section 406 4. Justifiable reliance. The misrepresentation must have been a
necessitates a written code of ethics that addresses the substantial factor on which the injured party relied.
following ethical issues 5. Injury or loss. The deception must have caused injury or loss to
1) CONFLICTS OF INTEREST the victim of the fraud.
The company’s code of ethics should outline procedures
for dealing with actual or apparent conflicts of interest Auditors encounter fraud at two levels
between personal and professional relationships. 1. employee fraud
2) FULL AND FAIR DISCLOSURES. 2. Management fraud.
o The organization should provide full, fair, accurate,
timely, and understandable disclosures in the Employee fraud, or fraud by nonmanagement
documents, reports, and financial statements that it employees
submits to the SEC and to the public. Generally designed to directly convert cash or other assets to
o Future disclosures are candid, open, truthful, and the employee’s personal benefit. Typically, the employee
void of such deceptions. circumvents the company’s internal control system for personal
3) LEGAL COMPLIANCE. Codes of ethics should require gain
employees to follow applicable governmental laws, rules,
and regulations. Employee fraud usually involves three steps:
4) INTERNAL REPORTING OF CODE VIOLATIONS. (1) Stealing something of value (an asset)
o The code of ethics must provide a mechanism to (2) Converting the asset to a usable form (cash)
permit prompt internal reporting of ethics violations. (3) Concealing the crime to avoid detection. - The most difficult.
o This provision is similar in nature to Sections 301
and 806, which were designed to encourage and Management fraud
protect whistle-blowers. o More insidious than employee fraud because it often
5) ACCOUNTABILITY. Employees must see an employee escapes detection until the organization has suffered
hotline as credible, or they will not use it. irreparable damage or loss.
o Management fraud usually does not involve the direct
Fraud and Accountants theft of assets
o involves deceptive practices to inflate earnings or to
Statement on Auditing Standards (SAS) No. 99, Consideration of forestall the recognition of either insolvency or a
Fraud in a Financial Statement Audit. decline in earnings
5) Independent Verification.
Verification procedures are independent checks of the
accounting system to identify errors and
misrepresentations.