Staggering...

[Poly Hive]

"Am I an immature and paranoid beekeeper?
I am a member of XYZ Beekeepers which is a registered charity. Every year a yearbook is produced that, among other things, contains contact details of every member unless the member indicates they want it with-held. The yearbook was posted to all members. Details printed are name, full address (inc. Post code), telephone number and email.
All members have received an email from the Executive Committee saying the yearbook was being put on the members area of website with immediate effect. The members area is accessed with a generic logon and password that is published in the XYZ magazine BEEKEEPING, which is advertised in BEECRAFT.
I complained about this saying that members should be asked for permission BEFORE putting personal data online and that the default was not to publish unless there was a positive response to do so from individual members.
It is suggested that I am being very troublesome and petty.
I'd love to hear what others think.
Should I just shut up and crawl into a hole?"

I found this on another site and in my opinion it would be both illegal and totally irresponsible for this to happen. Thoughts?

PH

 

[jenkinsbrynmair]

Skirting the wrong side of the line as regards the data protection act IMHO

 

[Brigsy]

If my personal details were compromised like that I would be very angry. People have all sorts of reasons for reticence. It can be job or life threatening for some at worst.

 

[thorn]

I'm all in favour of an easily accessible list. I don't have an obsession with privacy in that regard. I regret the passing of the phone book, which gave the address and phone number of nearly everyone in the area. I've kept my details in it, and they're on BT's on-line phone book. If anyone wants to contact me my user details will let you find my address and phone number within a minute.

What I don't do is broadcast the details of my life and times on Facebook or Twitter. The minutiae of my life are private.

 

[B+.]

Should I just shut up and crawl into a hole?"

I think it is reasonable to expect a beekeepers association to maintain a membership list in order to assist it in the smooth running of its activities. However, it must keep that list secure and not disclose it to unauthorised people.
Bedfordshire BKA have a clause in the membership renewal form (written by one of the members who is a retired lawyer) so that members can choose to have their contact details removed from the printed version of the yearbook. To my mind, this serves little purpose though since you are depriving your fellow members with the information they may need to contact you. In reality, I think your contact details will be available for anyone to find on the electoral register. Even withdrawing from the version generally available to the public doesn't keep your contact details hidden.
I think you're right, but, you're fighting a battle you probably can't win.

 

[Teebeeaitch]

You always have the option of becoming an ex-member of XYZ Beekeepers.

 

[Anduril]

Breach of Data Protection Act and opening you up to identity theft. People in this situation in other organisations have threatened to sue. The info is quickly taken down.

 

[Dusty Rhodes]

I agree - they are probably breaching the Data Protection Act; I believe they are data holders and processors, within the meaning of the Act.

My personal details have, since 1972, always been published in Diocesan Year Books. I've never had a problem - but we live in different times and are much more vulnerable to identity theft.

That BKA needs a kick up its database.


Dusty

 

[madasafish]

Yes: in breach of Data Protection.

"Should I just shut up and crawl into a hole"

The Chairman and Secretary of your Association should.. They are in charge of a body which should uphold the law - so are in the firing line of any legal action. .

(I suggest you print off this thread and show it to them and make them realise how out of touch they are with their legal responsibilities.)

 

[Worldsend]

In my club only the committee have access to membership lists

 

[midnight sun]

"Am I an immature and paranoid beekeeper?
I am a member of XYZ Beekeepers which is a registered charity. Every year a yearbook is produced that, among other things, contains contact details of every member unless the member indicates they want it with-held. The yearbook was posted to all members. Details printed are name, full address (inc. Post code), telephone number and email.
All members have received an email from the Executive Committee saying the yearbook was being put on the members area of website with immediate effect. The members area is accessed with a generic logon and password that is published in the XYZ magazine BEEKEEPING, which is advertised in BEECRAFT.
I complained about this saying that members should be asked for permission BEFORE putting personal data online and that the default was not to publish unless there was a positive response to do so from individual members.
It is suggested that I am being very troublesome and petty.
I'd love to hear what others think.
Should I just shut up and crawl into a hole?"

I found this on another site and in my opinion it would be both illegal and totally irresponsible for this to happen. Thoughts?

PH

Depends what you have agreed to in any clauses that you may have 'missed' if you have 'signed' any related documents. Otherwise it's a breach of data protection as already suggested.(which covers digital date files )

 

[Anduril]

Depends what you have agreed to in any clauses that you may have 'missed' if you have 'signed' any related documents. Otherwise it's a breach of data protection as already suggested.(which covers digital date files )

If you read Poly Hives original post. If they indicate otherwise the info can be withheld. Whether clauses have been missed is irrelevant, you are entitled to your privacy, any good charity should be aware of data protection. The same with emails you should use 'bcc'. In a previous life I taught an internet security expert and tightened my own security. There are online companies that can check how vulnerable you are and alert you. FB also has some security risk, DOB being one of them, depends how conscious you are of your internet trail, a bit of info on one site a bit on another it soon adds up. Recent online companies have been hacked and the information made available. I will not use one browser due to the deep dark web.

 

[Brigsy]

Do people actually put real data into these sites?


Sent from my iPhone using Tapatalk

 

[Anduril]

Do you put real debit and credit details online?
If you buy shares, boilerhouse companies can try and scam you. Reprobates purporting to be Microsoft also try to scam.

 

[REDWOOD]

Yearbook, that's how Facebook started, someone is on to a little money earner. If you have signed your rights away then nothing more one can do unless they are misleading people.

 

[Anduril]

Yearbook, that's how Facebook started, someone is on to a little money earner. If you have signed your rights away then nothing more one can do unless they are misleading people.

I would have to disagree due to recent publicity as an example regarding FB and pages that have been turned into memorials, data protection lawyers have advised a family to contact FB in writing to get things altered on one of the pages if that does not work, then there is the legal route.

 

[bpmurray]

Yearbook, that's how Facebook started, someone is on to a little money earner. If you have signed your rights away then nothing more one can do unless they are misleading people.

Nope - you can't sign away your legal rights. This is black & white - a clear breach of the data protection laws for which there are potentially quite severe penalties. Until, of course, brexit.

 

[thorn]

So they've published name, address and telephone number. These details all so easily obtainable elsewhere. If you're with BT what remains of the telephone directory gives this sort of information, and it's also on their on line directory. If you sell your honey, it's on the jars. The DVLA has sold your details to every insurance company, so every call centre employee has access to the details. You give out your name, address, landline number, mobile number and email address when you buy cat food or lightbulbs online. Ocado and Amazon know all about you. Order a poly nuc from any bee equipment supplier and you give them everything.
The Data Protection Act was the government's way of pretending to do something to protect privacy, and has never been anything more than a farce. The bad guys need a bit more before they can steal your identity than just your name, address, telephone number and email address.
Stop being so bloody paranoid.

 

[pargyle]

So they've published name, address and telephone number. These details all so easily obtainable elsewhere. If you're with BT what remains of the telephone directory gives this sort of information, and it's also on their on line directory. If you sell your honey, it's on the jars. The DVLA has sold your details to every insurance company, so every call centre employee has access to the details. You give out your name, address, landline number, mobile number and email address when you buy cat food or lightbulbs online. Ocado and Amazon know all about you. Order a poly nuc from any bee equipment supplier and you give them everything.
The Data Protection Act was the government's way of pretending to do something to protect privacy, and has never been anything more than a farce. The bad guys need a bit more before they can steal your identity than just your name, address, telephone number and email address.
Stop being so bloody paranoid.

Yes ... and actually all they really need is your bank account number, your debit card number and pin - and if your password is not one of those one in 100 million combinations then they have what they really want - the means to take money from you.

I'm not too paranoid about my personal details being relatively public ... but when it comes to things like bank details and my original identity documents - I'm very very careful. Passwords should be like your toothbrush - changed often and used only by you - and they should never contain real words or anything associated with your identity, a random mix of letters, upper and lower case, numbers and symbols.

Check your password strength here ...

https://howsecureismypassword.net/

BUT DON'T USE YOUR REAL PASSWORDS - Use something similar - the same sequence but different letters, numbers, symbols. If your password takes less than a million years for a PC to crack it then it is insecure... if it's not - change it until it is.

 

[Anduril]

So they've published name, address and telephone number. These details all so easily obtainable elsewhere. If you're with BT what remains of the telephone directory gives this sort of information, and it's also on their on line directory. If you sell your honey, it's on the jars. The DVLA has sold your details to every insurance company, so every call centre employee has access to the details. You give out your name, address, landline number, mobile number and email address when you buy cat food or lightbulbs online. Ocado and Amazon know all about you. Order a poly nuc from any bee equipment supplier and you give them everything.
The Data Protection Act was the government's way of pretending to do something to protect privacy, and has never been anything more than a farce. The bad guys need a bit more before they can steal your identity than just your name, address, telephone number and email address.
Stop being so bloody paranoid.

With this small amount of information you can see who sells on your details, just a small error here and there.