Quite rightly the ability of marketing companies, charity fundraisers etc has been curbed with the introduction of the new General Data Protection Regulations – the EU initiative being introduced in May 2018.
We have read the tragic results of elderly people being hounded to suicide through incessant calls by charity fundraisers. These charities had brought personal data from other sources without the individual’s knowledge.
I get that having legal terms and disclaimer on websites where the fact data can be sold is in place (out of sight, out of mind maybe?) but how many people read the small print on websites?
No one should be able to sell someone else’s data on full stop.
But what about organisations who make no money but help people on their journey into work. If they are prohibited by GDPR legislation from keeping details on file, how do they defend themselves if a malicious claim is made? Without documented evidence there is no defence.
What’s the solutions? Break the GDPR regulations or be open to abuse?
Im not at all sure……….
Jane James's Consultancy Limited 