Data Protection and data mining
Peter Fairbrother
peter.fairbrother at ntlworld.com
Tue, 12 Mar 2002 06:36:17 +0000
The other side of the DPA...
I recently 'phoned British Gas, after they sent me a threatening letter (I'm
not a customer, I assume it was a mistake). They asked me for my name and
address, then asked me to "confirm" my telephone number. I asked why and was
told "it's for Data Protection".
I refused to give it, on the grounds that I didn't want them to have it
(actually I was just feeling churlish, it's in the phone book anyway). I
offered them a digit if they asked for one, but they refused. They then
refused to talk to me further.
Most people would have given it without a thought, and given away their
birthdates and mother's maiden names too. This would be a good way to get
data about an individual - send a threatening letter and wait for a call.
Some kind of zero-knowledge protocol should be in place here... (:P
-- Peter Fairbrother