Well it's certainly made ntersting reading for a Friday! And many thanks
for the comments expressed. Web based email is not an option in this
scenario - access was denied to address security concerns.
I appreciate how setting up a separate account for personal email may
appear to have benefit in terms of the use of the company domain as a
letter head but I wondered how robust that argument is?
The definition of a data controller includes the words " controlling the
means of the processing".
Do liability and monitoring issues evaporate just because you've provided
a box for personal mail? I can look-up the domain name and identify the
legal entity operating it. If an email arrives in a personal mail
account set up by the company, through IT systems run by the company,
via domain name that the company has registered - even though it isn't
letterhead - couldn't it be argued the company (providing it is a data
controller) is deciding the means of the processing?
Grateful for your thoughts/comments.
Kevin
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving messages please send to the list owner
[log in to unmask]
Full help Desk - please email [log in to unmask] describing your needs
To receive these emails in HTML format send the command:
SET data-protection HTML to [log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|