** Reply to note from [log in to unmask] Wed, 12 Jun 2002 05:02:01 EDT
> I asked the HSE why the form was not encrypted and received the following
> response:
>
> "In response to your recent enquiry regarding HSE's privacy statement and
> insecure encrypted data, the Information commissioner's Office does not
> class any of the information contained on F2508's as sensitive and
> requiring the use of encryption is considered secure.
>
> Only data that is considered to be racial, political, religious, sexual,
> details of a persons mental health, or criminal records, is classified as
> sensitive and hence would require encryption and the use of Secure Socket
> layers for electronic transmission."
>
> Obviously I have now advised them that "physical" health or condition is also
> classed as sensitive data and await their renewed consideration of my query.
Thank you for taking it up. I think they cannot implement a secure server to do
- for what it is worth - secure (therefore encrypted) transactions and try to
find a way round it.
Good. Excellent. It gets better by the day. :-)
Charles
==============================================
Charles Christacopoulos, Data Protection & Management Information Officer,
Planning & Information, University of Dundee, Dundee, DD1 4HN, Scotland,
United Kingdom.
Tel: 44(0)1382-344891. Fax: 44(0)1382-201604.
http://www.somis.dundee.ac.uk/ http://somis2.ais.dundee.ac.uk/
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|