[dp-tf] Authorization to publish personal data in the DB (was Re: [dp-tf] Quadlogy of person proposals)

Previous message: [dp-tf] Authorization to publish personal data in the DB (was Re: [dp-tf] Quadlogy of person proposals)

Next message: [dp-tf] Authorization to publish personal data in the DB (was Re: [dp-tf] Quadlogy of person proposals)

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Janos Zsako zsako at 3c-hungary.hu
Fri Jun 15 14:18:49 CEST 2007

Dear Larisa,

> Let's look if the RIPE Database rules comly with it.
> For example, Section II, "CRITERIA FOR MAKING DATA PROCESSING LEGITIMATE"
> 
> 1. Member States shall provide that personal data may be processed only if:
> (a) the data subject has unambiguously given his consent; or
> 
> No. admin-c and tech-c are mandatory, without any personal consent

I am not sure this is the right way of putting it.
Yes, admin-c and tech-c _are_ mandatory, however, nobody
says you may (or even worse: you should) publish such data
without the given person's consent. In fact we never did so,
and I am sure many other people did not do so either.
The idea is that you have to find a person who consents to
this, and only publish his/her data.

> So, WHAT MAKES PERSONAL DATA PROCESSING IN THE RIPE DB LEGITIMATE?

I think you are right, the only paragraph that may apply is
(a) above. What we have to make sure is that people act in
accordance with it.

Best regards,
Janos

Previous message: [dp-tf] Authorization to publish personal data in the DB (was Re: [dp-tf] Quadlogy of person proposals)

Next message: [dp-tf] Authorization to publish personal data in the DB (was Re: [dp-tf] Quadlogy of person proposals)

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ dp-tf Archives ]