Charles, Many thanks to you all for the clarification, it looks like we've got some thinking to do. I was referring to internal re-registration for email addresses. The email list administration is difficult enough already, this is going to really complicate things. I just hope our institutional DPO is fully aware of the implications, we're still awaiting a 1998 DP Act briefing from him! I shall subscribe to the mailbase list for DP freaks as you suggest. Thanks and regards, Rob. -----Original Message----- From: [log in to unmask] [mailto:[log in to unmask]] Sent: 07 May 1999 16:52 To: [log in to unmask] Subject: RE: Data Protection Act issues ** Reply to note from "Symberlist R.C." <[log in to unmask]> Fri, 7 May 1999 13:41:37 +0100 Robert C. Symberlist wrote .... > I can quite understand permission to publish photos and other personal > details being denied, but I'm amazed that email addresses are going to be > treated as personal data - I've always regarded email addresses like > telephone numbers That is how it is, I asked the same Q as you many times. Let me rephrase and give you a couple of examples. We think of an email address and telephone number as belonging to the Institution (employer). Correct! But if the email address can be used to identify an individual (it does) then you and I have no right to identify the individual. Examples Below I am not being sexist, it drives the point home better. ------------------------------- Let us say a woman () is being harrased by a stalker. Let us say she receives phone calls at home and asks her telecom supplier for a new ex-directory number. Can you publish her telephone number irrespective? We are not allowed to judge if this person has a legitimate right or not to be removed from our web based telephone or email directory. Someone gets divorced. They get harrased by the ex-partner. They do not want their name on the directory and noone give you/me the right to ask them why. They do not want to tell us. ------------------------------- You could use alias EMail/telephone addresses for sending mail/calls to eg. an office. Example [log in to unmask] or use the tel. number for the office. ====================================================== Now let me make it worse for you (if that is the case in your institution). Our DNS addresses (for staff) are most often: inititialssurname.subnet.dundee.ac.uk ckchristacopoulos.ais.dundee.ac.uk Now, guess if our network people have the "right" to identify me wherever I visit with my browser? I can tell you, NO! > I think we shall have to consider a carefully worded re-registration as > Colin has just described. I have not seen such a message from Colin. Do you mean re-registration with the Data Protection Registrar or an internal registration? The latter you do need (us too) and please do tell me how best you think it can be achieved. Regards Charles PS. For those keen on Data Protection there is a list for freaks like me hosted at mailbase. ============================================== Charles Christacopoulos, Secretary's Office, University of Dundee, Dundee DD1 4HN, (Scotland) United Kingdom. Tel: +44+(0)1382-344891. Fax: +44+(0)1382-201604. WebDad of http://somis.ais.dundee.ac.uk/ Home of the Scottish Search Maestro http://somis2.ais.dundee.ac.uk/ Happily using OS2 Warp. ============================================== %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%