So, to be totally clear, let me give an example as a question.
Let us suppose that I hold data of Zimbabwean data subjects in the UK.
Zimbabwe is clearly not EEA.
If (without suitable registration etc) I transfer personal data of
Zimbabwean Data Subjects to a non EEA country that is not a safe haven, then
I commit an offence?
I would very much like a precise legal answer, ideally from one of our
legally qualified list members. (not intending to disparage any prior
answers)
-----Original Message-----
From: J F Hitches [mailto:[log in to unmask]]
Sent: 18 December 2001 10:04
To: [log in to unmask]
Cc: Trent,Tim
Subject: Re: Is this a transfer?
I agree with Tim Wright. It is not a question of whether the data
subject is an EEA resident or not. It is a question of whether
you are transferring the data outside of the EEA or an"approved"
country. THis would be happening if the access is from such a
country.
The Act applies to any data subject wherever they may be in the
world if the actual data is held in the EEA. It is the data that
is important, not the data subject, for this aspect.
John Hitches
> We are referring to transfers of data here. Thus I do not see an
> inconsistency. Happy to have it spelled out, though.
>
> -----Original Message-----
> From: Wright, Tim M [mailto:[log in to unmask]]
> Sent: 18 December 2001 09:35
> To: [log in to unmask]
> Subject: Re: Is this a transfer?
>
>
> > And then only relevant if it is the personal data of an EEA Data
> > Subject (including that user).
>
> I think you will find that this is incorrect: data is "personal"
> if it relates to any living identifiable individual, anywhere in
> the universe! The only relevance of the EEA is to *transfers* of
> data.
>
> Tim
>
> --
> Tim M. Wright
> Director - Technology Audit
> Charles Schwab Europe
> Tel: +44 190 852 7793
> Mobile: +44 7932 669 074
> Fax: +44 190 852 7593
>
>
> _______________________________________
>
> WARNING: All e-mail sent to or from this address will be received
> by the Charles Schwab Corporate E-mail system and is subject to
> archival and review by someone other than the addressee.
>
> Charles Schwab Europe.
> Cannon House, 24 Priory Queensway, Birmingham B4 6BS, United
> Kingdom.
>
> Charles Schwab Europe is a member firm of the London Stock
> Exchange and LIFFE and regulated by The Financial Services
> Authority
>
> Registered Office: As Above. Registered in England No. 2092410 VAT
> Registration No. GB 486 894471
>
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> If you wish to leave this list please send the command
> leave data-protection to [log in to unmask]
> All user commands can be found at : -
> www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
> all commands go to [log in to unmask] not the list please!
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> If you wish to leave this list please send the command
> leave data-protection to [log in to unmask]
> All user commands can be found at : -
> www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
> all commands go to [log in to unmask] not the list please!
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
J F Hitches
Data Protection Officer and
Information Security Officer
Kingston University
River House
53-57 High Street, Kingston upon Thames
Surrey, KT1 1LQ
Telephone/Fax: 020 8547 7768
E-mail: [log in to unmask]
The views expressed are those of the individual and
not necessarily those of the university.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
all commands go to [log in to unmask] not the list please!
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|