Jump to content

Data Protection

John am Rhein

Recommended Posts

Does anyone know the finer points of UK Data Protection rules, especially as applied to companies retaining your credit card details?


The following case study is actually from the Republic of Ireland but does anyone know if the UK rules would be essentially the same?


Case Study - Use of Credit Card Details from a Previous Transaction Without Consent


And, in particular:


More generally, I consider it to be a sound and proper principle that credit card data obtained for a particular transaction cannot be used subsequently for other transactions without express consent, without violating the ?fair obtaining? rule. The principle of transparency and fairness, which are key tenets of data protection law and practice, apply in this area just as in any other.


Also, does anyone know what responsibilities (if any) apply to a company retaining credit card details from earlier transactions with regard to security of confidential information? i.e. can they basically leave your credit card number lying around on bits of paper in a desk in a publicly accessible area or not?

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...