-----Original Message-----
From: Jody Bhoot
Sent: 04 April 2001 11:19
To: DATA PROTECTION GROUP (E-mail)
Subject: DP training for libraries
Importance: High
Has anyone given any dp training for library staff. If so, how have you
approached the following questions:-
1. Who is responsible for the information that they give out?
2. How far can they go in giving out information at the counter, to someone
standing in front of them. i.e. If someone comes in with their friends
ticket?
3. How do we know who is standing in front of us, and where do we stand if
information is given out by accident to the wrong person - due to not being
able to identify them.
4. Is there any protection for staff?
My general response to the questions has been:
1. Staff handling personal information as part of their job needs to be
aware of their responsibilities under the DPA 1998 and employee will
personally liable for breaches of the Act, if they disregard any instructions
given on the proper handling of personal information.
2. Staff should only disclose personal information to the ticket holder
unless a permission has been granted to a third party by the ticker holder.
This is the standard approach employed by banking institutions in disclosing
personal information to third parties.
3. Proof of identification is the ticket presented by at the counter. To
take this step to the extreme I recommend adding a photo of the ticker
holder, similar to the new driving licence . A defence for staff accidentally
give out information in error is if they have demonstrated all reasonable
care was taken in the proper handling of personal information.
4. Protection for staff is to follow the council policies and not to
disregard any instructions given in the proper handling of personal
information.
Please let me know how you have responded or are likely to respond to the
following questions.
Regards,
Jody
_______________________________________________________________________
The contents of this message do not necessarily represent the
opinions, views, policy or procedures of Leicestershire County Council.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
all commands go to [log in to unmask] not the list please!
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|