Recently I have given to considering the purpose that notification now
serves and the following questions arose:-
Does the current notification requirement properly meet the EU directive
requirements. Is it a step forward to a higher level of compliance as
intended by the legislature, or an unintentional step backwards?
How important are the notification requirements generally perceived now?
How will none notification really be treated in the future?
The notification is a handy document to provide as part of a subject access
response, to identify disclosures, but I query if that fulfils the real need
of the data subject, in that it appears to generic for that need. Given
that notification provides a public register of data users (where they have
notified) is there any other value to it, or is it in danger of becoming
surplus to needs because many controllers still do not notify?
Ian W.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
all commands go to [log in to unmask] not the list please!
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|