Lab 2 Assessment Worksheet Obtaining Personally Identifiable

Posted on December 26, 2025

Lab 2 Assessment Worksheetobtaining Personally Identifiable Informa

Evaluate the security implications of obtaining and managing personal information on the internet, and analyze specific tools and practices related to digital privacy, access controls, and online records. This includes assessing how personal data can be accessed, how social networking sites impact privacy, and methods to control and remove personal information from online sources. Additionally, consider how access control measures in Windows systems influence user permissions and security, including the use of Access Control Lists (ACLs) and command-line tools like icacls.exe. The goal is to demonstrate understanding of privacy, security, and access management in digital environments through detailed analysis and examples.

Paper For Above instruction

In an increasingly digital world, understanding how personally identifiable information (PII) is obtained, used, and protected is essential for maintaining privacy and security online. This paper explores various aspects of internet-based information gathering, social media privacy implications, and technical access control mechanisms, emphasizing practical strategies to mitigate risks associated with personal data exposure.

Online research reveals that personal information can often be retrieved from various search engines and websites, sometimes surprisingly extensive. For example, using popular search engines like Dogpile.com, AlltheInternet.com, or WhitePages.com may yield personal details such as full names, addresses, phone numbers, and even social media profiles. Websites like InstantCheckmate.com and ZabaSearch.com specialize in aggregating public records, which can include criminal records, court documents, and property records. Sharing personal data on social media platforms like Facebook, LinkedIn, or Twitter amplifies privacy concerns, as information posted by users may be owned by the platform but accessible to the public or targeted for data mining (Facebook, 2024). For instance, Facebook states, “When you post or otherwise share content on Facebook, you give us a non-exclusive, transferable, sub-licensable, royalty-free, worldwide license to use your content” (Facebook, 2024). This clause indicates that users relinquish certain rights over their shared content, which can be exploited if not properly managed.

The exposure of personal details online poses significant risks, including identity theft, fraud, and even social engineering attacks. Information such as full names, addresses, phone numbers, employment details, and social connections can be combined to craft convincing phishing schemes or to access financial accounts. Social networking sites, while useful for personal and professional connections, can inadvertently aid identity thieves by providing an abundance of data easily accessible or publicly visible. For example, LinkedIn profiles often reveal employment history, educational background, and contact details that criminals can use to imitate legitimate contacts or to gather intelligence for targeted attacks (Kumar & Singh, 2021).

To counteract such risks, users should employ privacy settings diligently—limiting who can view their profiles and personal details. A crucial security feature in any website requesting personal information is the use of SSL/TLS encryption, which ensures data transmitted between the user and the site is encrypted, preventing eavesdropping. Furthermore, users should be cautious about sharing sensitive data online and regularly review their privacy policies and settings. Social media sites have implications for job applicants; potential employers often scrutinize publicly available information, which can influence hiring decisions. Oversharing personal data or controversial posts can harm employment prospects, emphasizing the importance of controlling online footprints (Johnson & Smith, 2020).

Combining personal, family, and business contacts in social networks increases exposure to privacy breaches and social engineering scams. For example, attackers may exploit personal relationships to establish trust and deceive individuals into sharing confidential information. On platforms like LinkedIn, detailed profiles containing employment history, recommendations, and contact details can be harvested by malicious actors to facilitate identity theft, corporate espionage, or fraud (Williams, 2019).

In cases where highly confidential information is posted publicly, prompt action is necessary. Users should contact the website hosting the content to request removal, use Google's "Remove Outdated Content" tool, or employ the Search Console to expedite deindexing. Additionally, filing reports with relevant authorities and utilizing privacy rights under applicable laws can aid in removing or restricting access to certain data (Google Support, 2024). It is also advisable to set up regular monitoring of one's online presence to detect and address data leaks proactively.

Public records, such as court documents, property records, and licensing information, are accessible through government portals and online databases. These records are often aggregated and made available to the public unless restricted by law. Accessing such records involves searching specific government websites, using search engines with targeted queries, or subscribing to services that compile public data (Smith & Lee, 2022). While valuable for background checks or research, these records present privacy concerns, especially if sensitive data is accessible without restrictions.

To protect privacy when using social media platforms like Twitter, users can employ privacy controls such as private accounts, two-factor authentication, and limiting sharing of personal details. Avoiding posting sensitive data, including home addresses, phone numbers, or financial information, is crucial. Users should also review and update privacy settings regularly to align with best security practices and reduce exposure to unwanted surveillance or data collection (Davis, 2023).

Background checks performed on websites like InstantCheckmate.com provide comprehensive reports including criminal records, arrests, financial data, and aliases. Such information can be exploited by malicious actors for identity theft, blackmail, or fraud. Therefore, exercising caution when sharing personal details online and understanding how accessible these data are is vital for maintaining privacy. Regularly monitoring one's digital footprint and employing privacy tools can significantly reduce these risks (Brown & Clark, 2022).

In the context of managing file permissions on Windows systems, Access Control Lists (ACLs) serve a critical role. An ACL specifies which users or groups can access and modify files or folders. Using command-line tools like icacls.exe enables administrators to view or modify these permissions. For instance, permissions such as "Read," "Modify," or "Full Control" determine the extent of user interaction with files, impacting security and operational efficiency (Microsoft, 2021). Typically, assigning permissions to groups rather than individual users streamlines management and ensures consistent security policies across the organization. Group-based controls simplify updates and reduce errors (Anderson, 2019).

Implementing refined access controls involves balancing security with usability. To allow an HR manager to modify files exclusively within C:\ERPdocuments\HRfiles without granting similar access to other managers, permissions should be assigned specifically to the HR group. Removing the HR group's "List folder contents" permission would prevent them from viewing the contents, effectively hiding sensitive files from view. Conversely, adding the ShopFloor group to the "Modify" permission for the HR files folder would inadvertently grant shop floor employees the ability to alter HR data, which may be undesirable due to security policies. Such changes highlight the importance of precise permission management to prevent unauthorized access or data breaches (Davis & Lee, 2020).

In conclusion, managing personal information and system security requires a multifaceted approach involving awareness of online data exposure, privacy settings, and technical controls. Users must remain vigilant and utilize available tools and best practices to protect sensitive data. Organizations should implement robust access controls, regularly review permissions, and pursue proactive measures such as removal requests and monitoring to safeguard privacy. As digital environments evolve, continuing education and adherence to security protocols remain essential in mitigating risks related to data breaches, identity theft, and unauthorized access.

References

Anderson, P. (2019). Managing user permissions in Windows. IT Security Journal, 15(3), 45-52.
Brown, R., & Clark, S. (2022). Privacy implications of public records online. Cybersecurity Review, 28(4), 97-105.
Davis, M. (2023). Protecting privacy on social media platforms. Digital Security Today, 9(2), 12-18.
Davis, M., & Lee, J. (2020). Access control best practices for enterprises. Journal of Information Security, 20(1), 74-80.
Facebook. (2024). Data Use Policy. Retrieved from https://www.facebook.com/policy.php
Google Support. (2024). Remove outdated content & Privacy. Retrieved from https://support.google.com/websearch/answer/9674507
Johnson, L., & Smith, K. (2020). Social media and employment prospects. HR Management Review, 25(5), 33-40.
Kumar, R., & Singh, P. (2021). Data privacy in professional networking. International Journal of Digital Privacy, 3(2), 115-124.
Microsoft. (2021). Managing permissions with icacls. Windows Security Technical Documentation. Retrieved from https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/icacls
Smith, A., & Lee, J. (2022). Accessing public records online: techniques and implications. Government Data Journal, 12(3), 89-95.
Williams, H. (2019). Risks of oversharing on LinkedIn. Cybersecurity and Privacy Journal, 7(4), 58-63.

« Previous Next »

Hire Dr Jack for Homework & Academic Writing Help

Need personalised help with your homework, assignments, research papers, or dissertations? I would be happy to work with you one-to-one and support you from start to finish.

100% human-written work (no AI used) – if you ever detect AI content, I offer a full refund, no questions asked.
Zero plagiarism – I deliver original work, and if any plagiarism is found, you receive a 100% refund.
On-time delivery – your work is always completed within the agreed timeframe.
Available 24/7 – you can reach out whenever it is convenient for you.
Fixed Rate – $20 Per Page (Nothing Extra for Urgent, Title/Reference Page , Revision and many more.).

To discuss your requirements, please email me at drjack9650@gmail.com . I will respond as soon as possible.