When complying with a subject access request, employee names will often crop up on letters, reports, etc... to be provided to the subject.
Is there any reason why employees shouldn't receive the same 3rd party rights as others ?
e.g. an employee asks for their name to be withheld.
It is not critical to the access request and seems reasonable in the circumstances.
But the data subject is insisting on it being provided.
I seem to remember some previous discussion suggesting that employee names should not normally be withheld.
But can't remember the logic and can't find it in the archives.
any offers gratefully received.
thanks
Tommy Kennedy.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
all commands go to [log in to unmask] not the list please!
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|