No evidence of formal security vetting when Andrew became UK trade envoy, minister says
Submitted 1 hour ago by Veserr@sh.itjust.works to unitedkingdom@feddit.uk
Submitted 1 hour ago by Veserr@sh.itjust.works to unitedkingdom@feddit.uk
Corporal_Punishment@feddit.uk 1 hour ago
As a data protection professional, I’m curious.
Firstly, this data constitutes the personal data of Andrew. He might be a cunt, but he still has rights under UK GDPR. Regardless of his notoriety, there’s nothing in law that allows an organisation to share his employment record.
Secondly, again as its his personal data and he was an employee, why does the Foreign Office etc still have his employment records 26 years later?
They should have been destroyed in line with their retention policies. Most retention policies put a strict 6 years + remainder of the tax year in order to comply with tax legislation and the limitations act.