Tony Bowden on 21 July 2004 at 09:36 said:-
> However, the Commissioner has stated that they don't have to provide
> this information in response to an SAR.
>
From the brief description you give that seems hardly legitimate. I wonder
what the organisational/inter-organisational structure is.
One must assume they clearly outline these actions within their privacy and
terms of use policies, updating them whenever they make any consequential
change to the logical method of processing the data. I suppose they hook
that up with the existing software change management process.
Do they conduct any collection of information from other cookies which may
be on the users machine?
I personally cannot see how data of that type is not personal data in some
form at some stage.
It will be interesting to see what arguments have been used on both sides to
result in the stated outcome.
Ian W
> -----Original Message-----
> From: This list is for those interested in Data Protection
> issues [mailto:[log in to unmask]] On Behalf Of
> Tony Bowden
> Sent: 21 July 2004 09:36
> To: [log in to unmask]
> Subject: Re: Privacy Policy changes
>
>
> On Tue, Jul 20, 2004 at 05:19:59PM +0100, Duncan Smith wrote:
> > Simply browsing a web site (cookies 'n all) is unlikely to
> cause much of a
> > problem, as this data is mostly anonymous i.e. not personal
> data. But once
> > we start to identify an individual (forms, Amazon style
> log-ins etc) this
> > data is personal.
>
> Not that it matters.
>
> BlackStar.co.uk (now Sendit.com) log your cookie information (which,
> if you are a registered user is enough to identify you, as it contains
> your unique customer number) in their web access logs, and
> then also use
> that to log to a database details of every page you visit on
> their site.
>
> However, the Commissioner has stated that they don't have to provide
> this information in response to an SAR.
>
> Tony
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|