In message <[log in to unmask]>, at 09:50:52 on Tue, 8
Jan 2008, Nigel Roberts <[log in to unmask]> writes
>Information he might require might be transaction data, such as the
>date and time the transfer was made, and the IP address it was made
>from (if, as I suspect, it was done online).
>
[...]
>Where the bank has information in its possession (like the above
>mentioned transaction data),
The bank may have details of the transfer of the DD from the charity to
the bank; but that's not going to reveal anything about the prankster.
The charity may have some traffic data to help identify the perpetrator
if the DD was filled in online (and if they log and keep such stuff of
course). As I hope you know, RIPA would allow the police to request
copies of that traffic data, and in the brave new world of RIPA almost
every data controller is extremely averse to using anything other than
RIPA (eg DPA) to disclose traffic data. So even the bank (let alone Mr
Clarkson) would probably go away empty handed (not that I think the bank
has any business investigating the charity's transactions with donors at
all).
If the bank wanted to use some other statutory means to extract the
traffic data from the charity, then good luck to them; the initial
"excuse" about DPA, however, does reasonably well encapsulate the issue
for a lay audience at the first pass. (Not that I'm a fan of DPA
brush-offs, but this one seems to be more genuine than most).
--
Roland Perry
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving messages please send to the list owner
[log in to unmask]
Full help Desk - please email [log in to unmask] describing your needs
To receive these emails in HTML format send the command:
SET data-protection HTML to [log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|