The Labour Party reminds MPs about GDPR obligations
Published on Friday, March 1, 2019 - 12:01 by Peter Galdies
The Labour Party has sent a reminder to MPs about its GDPR obligations attempted access personal data by unuathorised users.
In an e-mail sent in the same week that 8 MP's left the party, general secretary, Jennie Formby, reminded recipients that “data within Contact Creator and other systems used for election or other campaigning work, may only be accessed by individuals who are authorised to access it, and may be used only for purposes authorised by the party as data controller.”
Peter Coomb, head of consulting for DQM GRC commented; "If any former Labour MPs did gain access to party data after they had left then the party will bear part of the the responsibility for failing to properly control access for leavers. Over the last couple of years we have worked with 100's of organisations helping them towards GDPR compliance, and this has clearly demonstrated that while many organisations have basic processes in place for handling such situations these are often either not robust enough or properly followed by staff to properly control data access."