I was reading something last night that advised that as details of health
etc is sensitive info and an employee is not obliged to disclose reasons
for illness then we should be putting a statement on self certs explaining
why we are asking for this data, what it will be used for and who can see
it - We state this more or less in the handbook anyway so I wondered if it
mattered. This would kind of apply for all the info we gather though.
I think the whole personnel file is potentially sensitive data so as long
as we have a policy statement about storage of personnel files and who can
see them , I would have thought that was enough.
Comments please
Thanks
Clementine Amawo
Inf. Man. Off.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving message please send to the list owner
[log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|