Data being subject to the Data Protection Act is one thing. Having to
change the way you currently handle it is another.
Clearly authors' names in a catalogue are personal data and the library is a
Data Controller. You then have to check that you are compliant with all the
Principles. Are you treating the data subject fairly? Do they need to know
that you are processing their data? Presuming you acquired the data from a
third party, you don't have to tell the data subject if you argue that it
would involve you in disproportionate effort. You don't need consent
because you meet the sixth Schedule 2 condition, 'legitimate interests'.
And so on through the remaining Principles.
However, you need to be sure that you use the information for purposes that
are compatible with the original purpose. Once you start using the data in
ways which would not be predictable to the authors, you might be in breach.
And if you start using it in ways that harm the data subject you could no
longer rely on the sixth condition. I recently took someone to task for
taking my name out of a directory of consultants and using it to market
their services to me. I argued that they had obtained my data unfairly,
since the directory had been published for a specific use by a specific
target group.
In other words, material that is in the public domain usually becomes an
issue only if you start using it in ways that deviate from the reason it is
in the public domain in the first place.
Paul Ticher
Information Management
0116 273 8191
22 Stoughton Drive North, Leicester LE5 5UB
I hereby require any recipient of this message not to use my personal data
for direct marketing purposes.
----- Original Message -----
From: Gil Richardson <[log in to unmask]>
To: <[log in to unmask]>
Sent: 07 October 2002 09:03
Subject: Re: Library Catalogues
> Charles
>
> I haven't thought this through really - but wouldn't this be taking the
DPA
> a touch to far? Isn't there some sort of explicit consent from authors
that
> there treasured works will be advertised, promoted and made generally
known
> via publishers lists, bookshop catalogues, library catalogues and so
forth,
> Otherwise how would the fruits of their labours ever get known, purchased,
> borrowed or used for research and educational purposes. I would include
> theses in this as well as they are contributions to subject research. I am
> presuming that no more than the authors name and, maybe, institutional
> affiliation, in terms of personal details, are available on the catalogue.
>
> Catalogues I would say are exempt, not that I have any evidence for this!
> Interesting point and I would be interested in others views.
>
> Library borrowers databases on the other hand........
>
> Gil
>
> Gil Richardson
> Senior Information Manager
> RCGP
> email: [log in to unmask]
> Website: www.rcgp.org.uk
> Tel: 020 7581 3232 ext 231
> Fax: 020 7584 1992
>
> "Promoting Excellence in Family Medicine"
>
> This email is confidential. It may not be disclosed to, or used by, anyone
> other than the addressee. If you receive this message in error, please
> advise the sender immediately.
>
>
> -----Original Message-----
> From: Charles Christacopoulos [mailto:[log in to unmask]]
> Sent: 04 October 2002 17:54
> To: [log in to unmask]
> Subject: Library Catalogues
>
> Hi,
>
> See what people do to me on a Friday.
>
> Our Library Catalogue is available for everyone to see (over the WWW too).
> It
> contains personal info. eg. names of authors. We also add our PhD theses
to
> it
> .. (and elsewhere in the Uni. we act as publishers ... ouch).
>
> Do we need to notify for the library catalogue (if it did not included our
> students) ?
>
> Now that it does include our ex-phd students what?
>
> The real problem I got is ... what is the "Purpose" of processing
catalogue
> data?
> Would I use "Education" on the standard template or invent another
> purpose?
>
> Ta for any thoughts.
> Charles
>
> PS. Sorry if it has been asked before. I can't search the list at
jiscmail,
> I'll
> check it and report it if the problem remains.
>
> ==============================================
> Charles Christacopoulos, Data Protection & Management Information Officer,
> Planning & Information, University of Dundee, Dundee, DD1 4HN, Scotland,
> United Kingdom.
> Tel: 44(0)1382-344891. Fax: 44(0)1382-201604.
> http://www.somis.dundee.ac.uk/ http://somis2.ais.dundee.ac.uk/
>
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> All archives of messages are stored permanently and are
> available to the world wide web community at large at
> http://www.jiscmail.ac.uk/lists/data-protection.html
> If you wish to leave this list please send the command
> leave data-protection to [log in to unmask]
> All user commands can be found at : -
> www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
> (all commands go to [log in to unmask] not the list please)
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> All archives of messages are stored permanently and are
> available to the world wide web community at large at
> http://www.jiscmail.ac.uk/lists/data-protection.html
> If you wish to leave this list please send the command
> leave data-protection to [log in to unmask]
> All user commands can be found at : -
> www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
> (all commands go to [log in to unmask] not the list please)
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|