Hello, I have only been a member of the list a short time, so I apologise if this has been covered before. My reading of the DPA (and the ICO topic-specific guidance) leaves me uncertain as to to the definitive answer to the question below. *Does the mere fact that Manager A emailed Manager B regarding Employee C render trigger the exemption relating to 3rd party data? * * * *To focus a little more, is it the case that emails between A and B, which may refer only to C and no other individual, contain the opinions/judgement of A and B and therefore permission need be sought from A and B?* * * Thank you in advance for any help you can give me. Luke ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html If you wish to leave this list please send the command leave data-protection to [log in to unmask] All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm Any queries about sending or receiving messages please send to the list owner [log in to unmask] Full help Desk - please email [log in to unmask] describing your needs To receive these emails in HTML format send the command: SET data-protection HTML to [log in to unmask] (all commands go to [log in to unmask] not the list please) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^