Print

Print
Steve
 
As Nic says this all has to be fair and lawful, and given the service in question that means effectively with consent. You have really picked this up in your final paragraph - it is all down to the privacy notice, whether in the membership form or incorporated in the application process. Compliance with Schedule 1 Part II for example.
 
We have many ISP's. They are not about circumventing DP but about regulating matters and processes between the parties. They all require complete compliance with DP on both sides and only allow sharing without consent in the circumstances the Act allows e.g. Schedule 2 Condition 4 - protecting vital interests . Unlikely to apply to a leisure centre !
 

Phillip Bradshaw

Information Manager
Clerk to the Council

Room CY4A, County Hall

EMail: [log in to unmask]

Phone:         029 2087 3346
Mobile :        07890 265987

Fax:              029 2087 3349

Mae Cyhoeddi Cynnar yn Codi Canfod Cadarnhaol
Proactive Publishing Promotes Positive Perceptions

 

From: This list is for those interested in Data Protection issues [mailto:[log in to unmask]] On Behalf Of DREW Nic
Sent: 19 November 2009 13:42
To: [log in to unmask]
Subject: Re: [data-protection] Sharing Information Protocol

The statement; “Local Authorities may do anything” comes with an implied caveat that they can do anything as long as it is lawful. Amongst other things that also means comply with DP requirements.

 

Nic Drew

DPO

Cardiff and Vale University Local Health Board

 

From: This list is for those interested in Data Protection issues [mailto:[log in to unmask]] On Behalf Of Cotterill, Steve
Sent: 19 November 2009 10:29
To: [log in to unmask]
Subject: Sharing Information Protocol

 

Morning,

 

I have just been give a 'Leisure Centre Membership Customer Insight Sharing Protocol' (LCMCISP) to advise on.

 

The objective of this protocol is to

 

1) Increase participation in Leisure Centres

2) Encourage payment by Direct Debit

3) Redesign Leisure Centre services.

 

Leisure Centre Membership data will be shared with the County Council and a Private Company (who are acting as consultants). I have (currently) not be told what information is being shared but it will, I assume, contain personal data, possibly 'sensitive' data as well. I will soon find out.

 

The LCMCISP states that data can be shared under the Local Government Act 2000, under Section 2 which states:-

 

Local Authorities may do anything , which they consider likely to achieve any one or more of the following

 

1) promotion/ improvement of economic well-being in their area

2) promotion/ improvement of social well-being in their area

1) promotion/ improvement of environmental well-being in their area

 

I would like any comments on this regarding Data Protection issues. Am I right to think this doesn't feel right. My first reactions were what does it say on the Membership Form 'Privacy Notice'?, is there 'sensitive data' involved? and not without the individuals' permission?.

 

Regards

Steve

 

______________________________________________________________________________________________________________________

Stephen Cotterill

Procurement & Technical Officer

 


DISCLAIMER:
This email and any attachments are confidential and intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient be advised that you have received this email in error and that any use, dissemination, forwarding, printing or copying of this email is strictly prohibited.
If you have received this email in error please contact the IT Service Desk at Broxtowe Borough Council on [log in to unmask] or telephone 0115 917 3194.
Senders and recipients of email should be aware that, under current legislation, the contents may be monitored and will be retained. The contents of the email may have to be disclosed in response to a request.
This disclaimer confirms that this email message has been swept for the presence of computer viruses.

This message is strictly confidential and intended for the person or organisation to whom it is addressed. If you are not the intended recipient of the message then please notify the sender immediately. Any of the statements or comments made above should be regarded as personal and not necessarily those of Cardiff and Vale University Local Health Board, any constituent part or connected body.

All e-mail sent to or from this address will be processed by Cardiff and Vale University Local Health Boards Corporate e-mail system and may be subject to scrutiny by someone other than the addressee.

Please be aware that, under the terms of the Freedom of Information Act 2000, Cardiff and Vale University Local Health Board may be required to make public the content of any emails or correspondence received. For further information on Freedom of Information or email monitoring, please refer to the Cardiff and Vale University Local Health Board website at www.cardiffandvaleulhb.wales.nhs.uk.


Maer neges hon yn gwbl gyfrinachol, ac fei bwriadwyd ar gyfer yr unigolyn neur sefydliad y cyfeiriwyd hi ato/atynt. Os nad chi ywr derbynnydd y bwriedid y neges ar ei gyfer, byddwch mor garedig rhoi gwybod ir anfonwr yn ddi-oed. Dylid ystyried unrhyw ddatganiadau neu sylwadau a wneir uchod yn rhai personol, ac nid o anghenraid yn rhai o eiddo Bwrdd Iechyd Lleol Prifysgol Caerdydd ar Fro, nac unrhyw ran gyfansoddol ohono na chorff cysylltiedig.

Caiff pob e-bost a anfonir i / or cyfeiriad hwn ei brosesu gan system e-bost Gorfforaethol Bwrdd Iechyd Lleol Prifysgol Caerdydd ar Fro, a gallai gael ei archwilio gan rai ac eithrior sawl a anfonodd y neges.

Cofiwch fod yn ymwybodol ei bod yn bosibl y bydd disgwyl i Fwrdd Iechyd Lleol Prifysgol Caerdydd ar Fro gyhoeddi cynnwys unrhyw e-bost neu ohebiaeth a dderbyniwyd, yn unol ag amodau Deddf Rhyddid Gwybodaeth 2000. I gael rhagor o wybodaeth am Ryddid Gwybodaeth neu fonitro negeseuon e-bost, trowch at wefan Bwrdd Iechyd Lleol Prifysgol Caerdydd ar Fro ar www.billcaerdyddarfro.cymru.nhs.uk .

 

 

 

All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html

Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):

All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm and are sent in the body of an otherwise blank email to [log in to unmask]

Any queries about sending or receiving messages please send to the list owner [log in to unmask]

(Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)

All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html

Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):

All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm and are sent in the body of an otherwise blank email to [log in to unmask]

Any queries about sending or receiving messages please send to the list owner [log in to unmask]

(Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)

**********************************************************************

Privileged/Confidential Information may be contained in this message. If you are not the addressee indicated in this message (or responsible for delivery of the message to such person), you may not copy or deliver this message to anyone. In such case, you should destroy this message and kindly notify the sender by reply email. Please advise immediately if you or your employer does not consent to Internet email for messages of this kind. Opinions, conclusions and other information in this message that do not relate to the official business of the Council of the City and County of Cardiff shall be understood as neither given nor endorsed by it. All e-mail sent to or from this address will be processed by Cardiff County Councils Corporate E-mail system and may be subject to scrutiny by someone other than the addressee.

**********************************************************************

Mae'n bosibl bod gwybodaeth gyfrinachol yn y neges hon. Os na chyfeirir y neges atoch chi'n benodol (neu os nad ydych chi'n gyfrifol am drosglwyddo'r neges i'r person a enwir), yna ni chewch gopio na throsglwyddo'r neges. Mewn achos o'r fath, dylech ddinistrio'r neges a hysbysu'r anfonwr drwy e-bost ar unwaith. Rhowch wybod i'r anfonydd ar unwaith os nad ydych chi neu eich cyflogydd yn caniatau e-bost y Rhyngrwyd am negeseuon fel hon. Rhaid deall nad yw'r safbwyntiau, y casgliadau a'r wybodaeth arall yn y neges hon nad ydynt yn cyfeirio at fusnes swyddogol Cyngor Dinas a Sir Caerdydd yn cynrychioli barn y Cyngor Sir nad yn cael sel ei fendith. Caiff unrhyw negeseuon a anfonir at, neu o'r cyfeiriad e-bost hwn eu prosesu gan system E-bost Gorfforaethol Cyngor Sir Caerdydd a gallant gael eu harchwilio gan rywun heblaw'r person a enwir.

**********************************************************************

All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html

Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):

All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm and are sent in the body of an otherwise blank email to [log in to unmask]

Any queries about sending or receiving messages please send to the list owner [log in to unmask]

(Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)