In message <[log in to unmask]>, at
11:53:45 on Thu, 19 Oct 2006, "Richardson Simon (Gateshead PCT)"
<[log in to unmask]> writes
>Your colleague can assert her right under section 42 of the DPA, and
>write to the Information Commissioner and ask him to assess whether
>this practice complies with Principle 7. It doesn't sound to me that
>they are employing appropriate organisational measures to keep this
>information secure.
It's worse that that. As others have said, the hotel's agreement with
the card companies says they MUST NOT record some of this information.
At all.
--
Roland Perry
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving message please send to the list owner
[log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|