Waitrose Executiven complaints team may have breached Data Protection Act principle 2 ?

George_Michael

2e0arr wrote: »

Incorrect I saw other peoples PROCESSED personal data. That is what breaches the DPA.

No you didn't.
Do you actually know what "personal data" mean?

Personal data means data which relate to a living individual who can be identified;

(a)from those data, or

(b) from those data and other information which is in the possession of, or is likely to come into the possession of, the data controller

You saw a vehicle registration number and whether or not that vehicle was allowed to access the area.
Please tell me how you or the people using the tablet could identify the driver of the vehicle from that information?
Add to this the fact that the driver may not even have been the registered keeper and your claim becomes even more ludicrous.

meer53

2e0arr wrote: »

A very good question.You should consider that by inputting your vrm and comparing against your logged other personal data and getting a response that processing being left on the tablet screen and showing to others reveals that 1 the application is not fit for purpose 2 That the council had clearly completed or carried out or implemented a privacy impact statement or assessment.

This lack of attention to basic privacy and data protection issues shows the council has a scant regard to data issues. This is why such breaches may have to be reported to the ICO

I'm still not worried :rotfl: I won't be reporting anything to anyone, i have much more interesting things to be doing.

2e0arr

George_Michael wrote: »

No you didn't.
Do you actually know what "personal data" mean?

You saw a vehicle registration number and whether or not that vehicle was allowed to access the area.
Please tell me how you or the people using the tablet could identify the driver of the vehicle from that information?
Add to this the fact that the driver may not even have been the registered keeper and your claim becomes even more ludicrous.

The DVLA and the ICO consider the VRM registered to a private individual and not a company is personal data

ValiantSon

2e0arr wrote: »

The DVLA and the ICO consider the VRM registered to a private individual and not a company is personal data

Only if that registration number can be linked to a registered keeper, which can only be done through access to the DVLA database, which is restricted. You are wrong (again).

I know, cease and desist...

photome

2e0arr wrote: »

The DVLA and the ICO consider the VRM registered to a private individual and not a company is personal data

So if I post a random VRM or even my own for that matter how much will you be able to tell me about the individual who drives it

2e0arr

photome wrote: »

So if I post a random VRM or even my own for that matter how much will you be able to tell me about the individual who drives it

Very little I imagine I'm confirming that the DVLA and the ICO consider the car vrm of a private individual is personal data. what can be done with it i have not challenged. It's their statement not mine

They stated this in an FOI request

2e0arr

https://www.whatdotheyknow.com/request/car_number_plates_personal_infor

check this out and look at the pdf responses

societys_child

Yawwwwwn . .

2e0arr

discat11 wrote: »

Processed personal data must include at least 2 pieces of PII (personally identifiable information -data which can identify a specific individual) to qualify as covered by any existing or currently proposed DP legislation.

A VRM is not one of those.

Do you have a link to the above please ?

please consider
https://www.whatdotheyknow.com/request/car_number_plates_personal_infor

check this out and look at the pdf files attached

discat11

I don't need to trawl the net to find you links, it's a basic principle of the DPA that 2 independent pieces of PII are needed to provide any substance to a data breach claim.

I'm regretting getting involved in your ridiculous paranoia frankly.