Ian W wrote:
>
> Joking apart - Have been looking at Section 8(6) of the DPA 1998,
> which covers routine deletions which may be made following the
> receipt of a subject access request. Inherent in that section is
> that data must not be deleted merely because of the receipt of a
> subject access request.
>
> Clearly there would be a breach for deleting a document
> deliberately following receipt of a subject access request; What
> would the offence be?
>
> Ian W.
When does receipt of a subject access request take place for
these purposes? The Act defines the 40 day period as from receipt
of the request and payment. But if one receives a request but has
to write for the payment is it an offence to delete items before
the payment is received as, at that stage, a fully valid request
has not been received?
John Hitches
John Hitches
Information Security Officer
and Data Protection Officer
Kingston University
Telephone 020 8547 7768
The views expressed are those of the individual and
not necessarily those of the university
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
all commands go to [log in to unmask] not the list please!
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|