We had a request from the CSA for bank account details last March. They do
have to be disclosed under certain circumstances - see Regulation 3(2)(q)
of SI 1992 No 1812.
>There have been cases recently where information blaggers have claimed to
be CSA >officers, so please ensure the letter is genuine and do not accept
faxed requests as >these are too easy to fake.
I had to smile at this. We received another request from the CSA which was
by fax - one which looked like it had been mocked up. I obtained the
details of the Director of the CSA office that the fax had apparently come
from and eventually confirmed that the request was genuine. I recall that,
when I finally spoke to the officer who had sent it she sounded somewhat
miffed that I had checked up but she also sounded somewhat chastened
(obviously following a conversation with her manager).
A lesson to all of us, perhaps, to make sure that we ask for data properly
as well as ensuring that we only disclose it in the right circumstances.
Regards,
Graham
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|