Bownes David on 04 August 2004 at 13:19 said:-
> This does not imply that Council Tax data can (or will) be
> used for non - Council Tax purposes. The CRM system must
> guard against inappropriate use of this data.
>
> So, the problem is ......?
It appears to be that many are unwilling to apply principle 1 & 2
appropriately, as they perceive a restriction on the ability to utilise
'their' data effectively.
Ask the same question on why there are often only limited computerised
access control mechanisms (Principle 2), logically managing different levels
of access to the same type of data, depending on the circumstances of
collection (Principle 1), which are allied to effective audit trails, within
both the private and public sectors.
Or maybe the issue is that there is limited public trust in the compilation
of large databases holding much personal data about individuals, because
they may so easily be abused with the purposes changing at a whim. That
would certainly be supported by the lengths to which the more complex
integration of data holdings are sometimes masked.
Or could it be that the larger and more centralised the databases are, the
less room there is for competition and the proliferation of new software.
A difficulty could also be that much purpose specific data is generally only
going to be of limited value for the purpose it was specifically collected.
i.e. The fact that 'pampers' are being purchased by an individual does not
necessarily mean that they will be interested in purchasing make-up. Unless
of course more data is available to match against, in order to further
determine and refine the knowledge that comes from the 'pampers' purchase.
But that would be intrusive, and perhaps people would generally not be
content with such things occurring very openly or widely, so some 'privacy'
would be needed by those utilising those practices.
DPO's would become more arbitrators in most of those scenarios, as they
attempted to uphold the DPA whilst assisting their organisation to meet its
objectives. Does any DP training include that type of skill, or is that all
on the job.
Ian W
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|