We’d like to remind Forumites to please avoid political debate on the Forum.

This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.

📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide

Santander marketing preferences: GDPR concern

2»

Comments

  • Jabba_flabba
    Jabba_flabba Posts: 100 Forumite
    Part of the Furniture 10 Posts Combo Breaker
    agrinnall wrote: »
    And what did the ICO say when you raised it with them? Do they concur with Santander's position?
    I didn't raise it with the ICO. From Santander's response, it sounded to me like they had done their homework in finding a suitable get out (legitimate interests) to allow them to continue opting customers in to marketings comms by default.
  • waamo
    waamo Posts: 10,298 Forumite
    10,000 Posts Seventh Anniversary Name Dropper
    Jabba_flabba wrote: »
    I didn't raise it with the ICO. From Santander's response, it sounded to me like they had done their homework in finding a suitable get out (legitimate interests) to allow them to continue opting customers in to marketings comms by default.

    As a youngster I used to do my homework. I did it faithfully and put effort in to it. It even sounded good. It was invariably wrong though.
  • Jabba_flabba
    Jabba_flabba Posts: 100 Forumite
    Part of the Furniture 10 Posts Combo Breaker
    Well, I attended the GDPR course and learnt a thing or two. There was also a slide that is very relevant to this thread:
    Under the GDPR, consent is only required when no other condition of processing applies (such as legitimate interest, or compliance with a legal obligation). In this sense, consent is only required as a 'last option' if no other processing reason applies. It is a common misconception that, under the GDPR, explicit consent is required in every situation - but this is not the case. When it is required, the GDPR has prescriptive rules about what constitutes consent. Where consent is being relied upon, it must be clear, freely-given, specific, informed and active in order for someone's personal data to be processed.
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 353.9K Banking & Borrowing
  • 254.3K Reduce Debt & Boost Income
  • 455.2K Spending & Discounts
  • 246.9K Work, Benefits & Business
  • 603.5K Mortgages, Homes & Bills
  • 178.3K Life & Family
  • 261K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16.1K Discuss & Feedback
  • 37.7K Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture