JISCMail - DATA-PROTECTION Archives

Simon Macaulay on 23 June 2005 at 11:11 said:-

> can anyone give advice on how to deal with a scenario where a 
> mem of staff wants to see the emails of certain other staff 
> which have him as the focus of their emails?
> 
> Unfortunately we do not have a monitoring or similar policy 
> which states we will search email accounts after receiving a 
> SAR or an FOI request (not for want of trying) and the 
> approach of our HR branch is to simply ask the staff 
> mentioned if they have such emails and to disclose if they do.

Is a policy statement required before regulative requirements can be met?

> This leads me to the old chestnut of, are they 3rd parties, 
> and do they have to be asked for consent before there emails 
> are disclosed in full without their names redacted?  This is 
> the approach we are taking but I would appreciate any 
> guidance or clarification from anyone who has been in a 
> similar situation.

Is there such a thing as requiring consent to respond to a SAR?

Ian W

> -----Original Message-----
> From: This list is for those interested in Data Protection 
> issues [mailto:[log in to unmask]] On Behalf Of 
> Simon Macaulay
> Sent: 23 June 2005 11:11
> To: [log in to unmask]
> Subject: Internal staff SAR
> 
> 
> Hi all,
> can anyone give advice on how to deal with a scenario where a 
> mem of staff wants to see the emails of certain other staff 
> which have him as the focus of their emails?
> 
> Unfortunately we do not have a monitoring or similar policy 
> which states we will search email accounts after receiving a 
> SAR or an FOI request (not for want of trying) and the 
> approach of our HR branch is to simply ask the staff 
> mentioned if they have such emails and to disclose if they do.
> 
> This leads me to the old chestnut of, are they 3rd parties, 
> and do they have to be asked for consent before there emails 
> are disclosed in full without their names redacted?  This is 
> the approach we are taking but I would appreciate any 
> guidance or clarification from anyone who has been in a 
> similar situation.
> 
> Cheers, Simon Mac.
> 
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>        All archives of messages are stored permanently and are
>       available to the world wide web community at large at
>       http://www.jiscmail.ac.uk/lists/data-protection.html
>       If you wish to leave this list please send the command
>        leave data-protection to [log in to unmask]
>             All user commands can be found at : -
>         http://www.jiscmail.ac.uk/help/commandref.htm
> Any queries about sending or receiving message please send to 
> the list owner
>               [log in to unmask]
>   (all commands go to [log in to unmask] not the list please)
>    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> 

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
       All archives of messages are stored permanently and are
      available to the world wide web community at large at
      http://www.jiscmail.ac.uk/lists/data-protection.html
      If you wish to leave this list please send the command
       leave data-protection to [log in to unmask]
            All user commands can be found at : -
        http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving message please send to the list owner
              [log in to unmask]
  (all commands go to [log in to unmask] not the list please)
   ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^