Security obligations under DPA mean you as data controller have to decide
what is appropriate and stand by your decision.
If you erase the tape then the tape falls into the hands of someone outside
of the data controllers control and they are able to recover the 'supposedly
erased' data then you as data controller have arguably not taken appropriate
security. The fact that a data controllers security knowledge may be less
than the person who recovers the data doesn't let you off the hook re
responsibility.
This happens a lot with floppy disks. A non tech person believes deleting a
file has erased the data.
Persons versed in the technology know this is not the case. Structure of
analogue audio or video data however is somewhat different.
When I used to be a computer operator we used to bulk erase data tapes in a
special machine which used strong magnetic fields to do this. Basically
scrambled all information. These tapes could then be re-formatted and
re-used safely.
David Wyatt
----- Original Message -----
From: "Paul Brady" <[log in to unmask]>
To: <[log in to unmask]>
Sent: Wednesday, December 11, 2002 5:28 PM
Subject: [data-protection] Destruction or deletion
Can anyone clarify the following for me please?
My organisation has 'personal data' on video and audio cassettes that is
approaching the date after which we can no longer use it (conditions of
consent etc.).
Is it acceptable to erase the data and re-use the cassettes (if this is
possible)?
Or, once magnetically wiped or whatever, do we then have to completely
destroy them?
It's a win-win really. One way we get to pride ourselves on re-use of
resources; the other way we get to obliterate something in a
stress-release type or pyromaniac type fashion. Not that I am stressed
or have an unhealthy liking for fire, you understand
How do other people destroy video / audio data? Are there guidelines on
the IC website? (I haven't found them using a search on destroying data
and data destruction)
I guess erasing would be good enough...but I await your reply(ies) and
superior knowledge.
Many thanks,
Paul Brady
Systems Analyst
eHealth Horizons Ltd
Tel: +44 (0) 191 243 6124
Fax: +44 (0) 191 243 6101
[log in to unmask]
http://www.schin.ncl.ac.uk
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited. If you
received this in error, please contact the sender and delete the
material from any computer
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|