Agencies breaching GDPR

Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

You are not logged in or you do not have permission to access this page. This could be due to one of several reasons:

You are not logged in. If you are already registered, fill in the form below to log in, or follow the "Sign Up" link to register a new account.
You may not have sufficient privileges to access this page. Are you trying to edit someone else's post, access administrative features or some other privileged system?
If you are trying to post, the administrator may have disabled your account, or it may be awaiting activation.

Lance replied

17 December 2019, 11:31
Originally posted by NotAllThere View Post

Try this approach.

Ha....

That letter was given to me by a security professional as his own work. Plagiaristic git.
Leave a comment:
DaveB replied

17 December 2019, 11:24
Originally posted by NotAllThere View Post

Try this approach.

Overkill and a waste of time. It won't achieve anything more than a simple request for information would. The regulations are clear on what has to be provided in response to a request without all the additional verbage.

Quote from an actual lawyer in response to the post.

This letter does no-one any favours I'm afraid. It goes well beyond what Article 15 requires, seems designed to just cause panic in recipients and money for lawyers. It creates an impression with data subject that they are going to get some great insights (which they will not). I'll try and find time to put forward a more considered response. For the time being, I'd advise recipients (and I know a few!) to not worry too much and just provide a copy of the individual's data as per Art 15.3 and their standard response to the Art 15.1 and 15.2 aspects.
Leave a comment:
NotAllThere replied

17 December 2019, 11:17
Try this approach.
Leave a comment:
DaveB replied

17 December 2019, 11:15
Originally posted by MasterBait View Post

I have two examples of agencies, which I requested specifically to remove my data from their database and didn't do that. I'm sure there are many more. Where can I go next?

Name and shame:
Tank Recruitment
Roc Search

PS will GDPR disappear after Brexit?

First step is to go back to them and point out the failure. ICO will expect you to have done this in the first instance.

Bear in mind there are legitimate reasons for them not to do it e.g. you have or have had a contract with them in the past which means they have statutory obligations to retain it for certain periods.

If you don't get a satisfactory answer then report them to the ICO with evidence of your original request and evidence that they have not complied.

Your personal information concerns | ICO

They are good and will take complaints seriously and act on them.

GDPR has been adopted in UK law under the Data Protection Act 2018, so unless that is repealed it is going no-where. I've not seen any suggestions that is going to happen.
Leave a comment:
ladymuck replied

17 December 2019, 11:09
Report them to the ICO
Leave a comment:
MasterBait started a topic Agencies breaching GDPR

17 December 2019, 10:57
Agencies breaching GDPR

I have two examples of agencies, which I requested specifically to remove my data from their database and didn't do that. I'm sure there are many more. Where can I go next?

Name and shame:
Tank Recruitment
Roc Search

PS will GDPR disappear after Brexit?
Tags: None