** Reply to note from Brenda Scourfield <[log in to unmask]> Fri, 9 Aug 2002 09:30:48 +0100
> I posted this on Tuesday and didn't have ANY replies ! Does this mean I
> have covered it satisfactorily, or was everyone on holiday ?
>
> Our personnel department are looking at systems which provide an option to
> fill in an application form on the internet and submit it on-line. I
> suggested that the data should be encrypted and also a procedure set up to
> destroy/delete unsuccessful applications.
>
> Does anyone have any suggestions for further considerations that should be
> taken into account - I am sure there must be many.
Hi
If there is a geeky question I should be replying :-\ but I am (was) on holiday.
You covered it OK.
Where you mentioned encrypted transaction ... tell your techies to install SSL
(secure socket layers) so you run a secure server. Then you buy your certificate
from a reputable company like verisign, thawte and others like them. You'll have
to allow for annual expenditure for the certificate.
You'll need the usual statement on the form of how you are going to process the
personal data.
-------
Just in case those who design the electronic application form for you cut
corners, the form should not be emailed from the client to some address at the
council, it should be submitted to the server where all the processing will take
place.
Charles
==============================================
Charles Christacopoulos, Data Protection & Management Information Officer,
Planning & Information, University of Dundee, Dundee, DD1 4HN, Scotland,
United Kingdom.
Tel: 44(0)1382-344891. Fax: 44(0)1382-201604.
http://www.somis.dundee.ac.uk/ http://somis2.ais.dundee.ac.uk/
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|