Where a web site publishes a privacy policy which does not reflect the
actual state of affairs,
i.e.
http://www.w3.org/Consortium/Legal/privacy-statement-20000612
"Logged information is kept indefinitely as admistrative and research
material; it is not disclosed outside of W3C host site personnel."
Clearly contains an oversight in that disclosure would take place within the
remit of the host countries legal arrangements. Yet all visitors to the
site may not always be aware of all of those localised legal arrangements or
countries management culture.
If the site were were in Europe, what recourse, if any, would be available
to the ICO should they receive a complaint?
Ian W
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|