This might be better in the FOI forum, however I can't seem to post there at the moment so forgive me posting this
here - it does have DPA implications.
A public body has been asked to supply the web sites accessed from several specific computers over a period of the
past six to twelve months. This was self identified as an FOI request however, there are certain considerations:
The location of the PC's gives the requestor a reasonable idea of who would have used them, therefore there is a
possibility that DPA may become relevant.
It is also possible that a simple list of web sites might be misleading. For example one machine may have been used
to access information about drug use and abuse, but in a professional capacity only. On it's own it may imply
(incorrectly) that the machine was being used to access inappropriate content.
It may also show access to one or more websites that might allow someone with the right knowledge to second guess
potential suppliers for services, and so potentially fall foul of sec. 43 of the FOIA.
I wonder if anyone has ever had a similar request to this and how did they deal with it?
I know how I plan to deal with it, but I thought it would be an interesting discussion point....
Simon Howarth.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving messages please send to the list owner
[log in to unmask]
Full help Desk - please email [log in to unmask] describing your needs
To receive these emails in HTML format send the command:
SET data-protection HTML to [log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|