JISCMail - DATA-PROTECTION Archives

There seems to be some confusion around this subject and I would like to get to the bottom of what's legal versus what's acceptable.

Simple scenario: a list broker wants to build email marketing lists for business. The public domain eg  LinkedIn is a rich source of accurate email data, so they 'acquire' the data from LI (manually or via software scrape), and then make this data available to b2b clients for email marketing purposes.

Most list brokers assume this to be legal and acceptable, based on the UK PECR 'Corporate Subscriber' exemption to prior consent. I disagree.

The confusion stems from regulation 22(1) of PECR and the concept of 'corporate subscriber' and 'personal corporate email' (Section 145 of the ICO Direct Marketing guidance v2.0).  

If we accept that [log in to unmask] is personal data (see section 142 of the ICO Direct Marketing guidance v2.0), then any email directed to that individual will be 'direct marketing'. We know direct marketing requires prior consent if sent to an individual, unless the 'address' we send it to belongs to a corporate subscriber. 

So I agree, that [log in to unmask] falls outside of the PECR 22(1) requirement, but crucially not DPA.

So my question is, does obtaining personal data, from a publicly available web site like LinkedIn, constitute lawful and fair obtaining for the purpose of direct marketing?

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
     All archives of messages are stored permanently and are
      available to the world wide web community at large at
      http://www.jiscmail.ac.uk/lists/data-protection.html
     If you wish to leave this list please send the command
       leave data-protection to [log in to unmask]
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
 Any queries about sending or receiving messages please send to the list owner
              [log in to unmask]
  Full help Desk - please email [log in to unmask] describing your needs
        To receive these emails in HTML format send the command:
         SET data-protection HTML to [log in to unmask]
   (all commands go to [log in to unmask] not the list please)
    ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^