It comes down to logic.
He can prove who he is but not his alter ego. Thus one may not assume that
he is entitled to the data about his alter ego because he cannot prove that
he is the "owner" of that ego's data.
I suggest you take advice from your legal department. I think their advice
will be along the lines of "He may only have his alter ego's data if he can
produce a legal document (a sworn affidavit, for example) that he is that
person." Assuming he is a reasonable person he will see this as a safeguard
to his rights, the more so if you do not opt to charge him a second fee. If
he is unreasonable then you have protected your organisation from him and
any complaint by any person he may be impersonating.
This is a challenge to us all, albeit a rare one indeed. We are each
entitled to be known as we wish to be known. I may choose to be Tim Trent
by day and at work, and Maisie Anstruther in my evening bar work in the
strange clubs I may or may not frequent. I am as entitled to my data as Tim
AND as Maisie, but I have to prove that I am Maisie in order to obtain that
portion.
All emails to Maisie will be chuckled at, and pinned on the wall in the
putative clubs for the delight of the patrons.
Tim Trent - Consultant
Direct: +44(0)1344 392644 Mobile:+44(0)7710 126618
email: [log in to unmask]
Marketing Improvement Limited, Abbey House, Grenville Place, Bracknell,
United Kingdom, RG12 1BP
http://www.marketingimprovement.com
This message is for the intended addressee's use only. It may contain
confidential, proprietary or legally privileged information. No
confidentiality or privilege is waived or lost by any mis-transmission. If
you receive this message in error, please immediately delete it and all
copies of it from your system, destroy any hard copies of it and notify the
sender. You must not, directly or indirectly, use, disclose, distribute,
print, or copy any part of this message if you are not the intended
recipient. Any views expressed in this message are those of the individual
sender, except where the message states otherwise and the sender is
authorised to state them to be the views of any such entity.
-----Original Message-----
From: This list is for those interested in Data Protection issues
[mailto:[log in to unmask]] On Behalf Of Carter, Antoinette
(CCM)
Sent: Tuesday, April 20, 2004 4:49 PM
To: [log in to unmask]
Subject: [data-protection] Double Identity DSAR
Dear All,
I have received a DSAR from an ex-member of staff who seems to be using two
completely different names. Although he has supplied proof of his "real"
identity, much of the information I have managed to find (especially all the
juicy stuff!) refers to him under this other assumed name; which leaves me
in a bit of a quandary, as to whether or not I should supply it, given that
he cannot prove that he is in fact one and the same person. I would very
much like to hear the list's thoughts
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|