Labour’s Data Compliance Unit Breaks Data Compliance Law

The Labour Party has suffered an embarrassing double data cock up in responding to complaints over the party’s use of personal data. A co-conspirator complained to London Labour about using her data for advertising purposes – she had never signed up to the party. The Labour Data Protection team initially did not respond to the complaint for months – in and of itself a breach of GDPR which the ICO acknowledged. Yet it gets worse…

After the co-conspirator escalated her complaint to the ICO, the Labour Data Protection Team replied to the complaint – and a number of other people who had made complaints – but neglected to blind copy them in. Now each data complainant has the details of the other data complainants. A textbook GDPR breach and a very ironic one considering who made it…

A follow-up email was swiftly sent, admitting guilt, apologising, and asking the complainants to delete the previous email. Guido is reliably informed that this will be taken further.

mdi-timer 1 September 2020 @ 16:00 1 Sep 2020 @ 16:00 mdi-twitter mdi-facebook mdi-whatsapp mdi-telegram mdi-linkedin mdi-email mdi-comment View Comments
Public Procurement Firms Fear GDPR More Than Brexit

Despite endless increasingly hysterical media reports to the contrary, a landmark survey of businesses involved with public sector procurement has found that Brexit is ranked as only the fourth of six options in terms of having an impact on procurement strategy. In terms of ‘high impact’, Brexit comes in fifth of six…

The survey, conducted by BiP Solutions with iGov Survey was ‘surprised’ to see the results, with Brexit coming below Social Value, the impact of EU legislation, and GDPR.

“Three-quarters of organisations surveyed also believe GDPR will have a medium or high impact on procurement strategies. A further 71% cited EU Directives and legislative updates. Surprisingly, Brexit came fourth overall in terms of the responses.”

Public procurement firms are more worried about the impact of EU regulation than the impact of leaving the EU…

mdi-timer 28 January 2019 @ 16:15 28 Jan 2019 @ 16:15 mdi-twitter mdi-facebook mdi-whatsapp mdi-telegram mdi-linkedin mdi-email mdi-comment View Comments
Labour MP CC’s All Constituents to GDPR Email

Corbynista MP Marsha De Cordova has chosen GPDR day to unleash an utterly spectacular data protection fail. In an effort to comply with the new data measures, the Battersea MP’s office sent a ‘GDPR Consent Form’ to constituents via email. There was just one problem. Her office put every constituent’s email in the address line, rather than BCC, therefore sharing dozens of personal emails addresses without permission. Good work…

Intriguingly, De Cordova’s GDPR form – by which constituents can give permission to others to handle casework on their behalf – states:

“In some cases, we may need to contact outside agencies regarding your case.  They often require additional information such as your Date of Birth, National Insurance Number and any reference numbers you may have obtained through previous contact with the agency.  Please supply us with this information where appropriate in the section below.”

So in order to sign up to the MP’s GDPR-compliant process, constituents have to surrender even more of their personal information. MPs are having a GDPR meltdown, but this takes some beating…

mdi-timer 25 May 2018 @ 11:34 25 May 2018 @ 11:34 mdi-twitter mdi-facebook mdi-whatsapp mdi-telegram mdi-linkedin mdi-email mdi-comment View Comments
GDPR Latest: Don’t “Ruin Jeremy’s Birthday”

This has to be the saddest GDPR begging email yet: Labour members are being told they will “ruin Jeremy’s birthday” unless they consent to receiving communications from the party by Friday. Definitely not a cult…

mdi-timer 24 May 2018 @ 07:51 24 May 2018 @ 07:51 mdi-twitter mdi-facebook mdi-whatsapp mdi-telegram mdi-linkedin mdi-email mdi-comment View Comments