We've had an interesting question come up during an ethical review of a research project. The researcher is an occupational health nurse for a private company. She wants to research the effects of exposure to certain chemicals on the reproductive health of those exposed. The requirements for someone to be eligible to participate in the project are quite rigorous; for instance, women who are taking the Pill would not be included. The researcher proposes to find possible participants by trawling through the occupational health records at her company, and notifying those employees who meet the requirements. My feeling is that this would violate principles 1 and 2 of the DPA, at least. I'm not familiar with other legislation that might affect the uses to which these records can be put. Can anyone help me out on this? Thanks, Mary F. Liddell Information Access Officer Brunel University ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html If you wish to leave this list please send the command leave data-protection to [log in to unmask] All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm Any queries about sending or receiving messages please send to the list owner [log in to unmask] Full help Desk - please email [log in to unmask] describing your needs To receive these emails in HTML format send the command: SET data-protection HTML to [log in to unmask] (all commands go to [log in to unmask] not the list please) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^