JISCMail - DATA-PROTECTION Archives

Andrew

All SAR's are handled centrally by me and BAU requests via the section in question. 

With regards to distinguishing between the two it tends to be a judgement call based on 

1) amount and type of information requested
2) the context the request is made (ie is there an underlying issue)
3) people knowing who they are dealing with

Ultimately a bit ad hoc but it seems to work quite well (probably because I think I've scared people enough so if they are in doubt they refer it to me).

Cheers
Steve

_____________________________________________________________________________________________________________________ 
Stephen Cotterill 
Procurement & Technical Officer 

-----Original Message-----
From: This list is for those interested in Data Protection issues [mailto:[log in to unmask]] On Behalf Of Andrew Goodfellow-Swaap
Sent: 16 October 2014 14:46
To: [log in to unmask]
Subject: [data-protection] Monitoring SAR's

Good afternoon everyone,

I'm looking to get some views on other organisations' behaviour when it comes to recording SAR's.

For background, we are currently looking at how requests for information, including SAR's, can be dealt with consistently across the organisation without having to rely on a large central team.

It's well known, I think, that a lot of work, particularly in Local Government, is carried out that may technically consitiute a SAR but is handled as 'business as usual' by relevant service areas/departments. Examples I'm thinking of here would be along the lines of a citizen emailing a social care team to obtain a copy of a report that has been written about them or an employee contacting HR and requesting a copy of their contract.

My question is, does your organisation draw a distinction between a 'business as usual' request, a 'local' SAR that would be handled and monitored within the area and possibly reported to a central team and a 'corporate' SAR that, possibly, is handled by a central Data Protection/Information Governance team?

If it does, how is the distinction made?

Any comments/views would be appreciated.

Thanks in advance.

Andrew Goodfellow-Swaap
Senior Information Officer
Nottingham City Council

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
     All archives of messages are stored permanently and are
      available to the world wide web community at large at
      http://www.jiscmail.ac.uk/lists/data-protection.html
     If you wish to leave this list please send the command
       leave data-protection to [log in to unmask] All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
 Any queries about sending or receiving messages please send to the list owner
              [log in to unmask]
  Full help Desk - please email [log in to unmask] describing your needs
        To receive these emails in HTML format send the command:
         SET data-protection HTML to [log in to unmask]
   (all commands go to [log in to unmask] not the list please)
    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

DISCLAIMER:
This email and any attachments are confidential and intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient be advised that you have received this email in error and that any use, dissemination, forwarding, printing or copying of this email is strictly prohibited. 
If you have received this email in error please contact the IT Service Desk at Broxtowe Borough Council on [log in to unmask] or telephone 0115 917 3194. 
Senders and recipients of email should be aware that, under current legislation, the contents may be monitored and will be retained. The contents of the email may have to be disclosed in response to a request.
This disclaimer confirms that this email message has been swept for the presence of computer viruses.


^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
     All archives of messages are stored permanently and are
      available to the world wide web community at large at
      http://www.jiscmail.ac.uk/lists/data-protection.html
     If you wish to leave this list please send the command
       leave data-protection to [log in to unmask]
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
 Any queries about sending or receiving messages please send to the list owner
              [log in to unmask]
  Full help Desk - please email [log in to unmask] describing your needs
        To receive these emails in HTML format send the command:
         SET data-protection HTML to [log in to unmask]
   (all commands go to [log in to unmask] not the list please)
    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^