Data held by ISPs

Peter Fairbrother zenadsl6186 at
Thu Dec 18 20:12:41 GMT 2014

On 18/12/14 06:49, William Heath wrote:
> That would be a DPA subject access request as others more expert than me
> would quickly confirm. It would be interesting to hear what sort of
> results you get.

Probably nothing useful - see ss.29(1) and perhaps ss.29(2) of the DPA.


-- Peter Fairbrother

[section 7 is the bit about subject access requests]

29 Crime and taxation.

(1)Personal data processed for any of the following purposes—

(a)the prevention or detection of crime,

(b)the apprehension or prosecution of offenders, or

(c)the assessment or collection of any tax or duty or of any imposition 
of a similar nature,

are exempt from the first data protection principle (except to the 
extent to which it requires compliance with the conditions in Schedules 
2 and 3) and section 7 in any case to the extent to which the 
application of those provisions to the data would be likely to prejudice 
any of the matters mentioned in this subsection.

(2)Personal data which—

(a)are processed for the purpose of discharging statutory functions, and

(b)consist of information obtained for such a purpose from a person who 
had it in his possession for any of the purposes mentioned in subsection 

are exempt from the subject information provisions to the same extent as 
personal data processed for any of the purposes mentioned in that 

> On 18 Dec 2014 06:37, "Peter Fairbrother" <zenadsl6186 at
> <mailto:zenadsl6186 at>> wrote:
>     Being curious about exactly what data my ISP hold about me - things
>     like sessions, how are they worked out? what is a session? how long
>     are they stored? - I was thinking about asking mine for a copy of
>     this, via a freedom of information act request.
>     My question is, would they redact that data, and if so how much? Eg
>     if data was stored under ACTA, would they include it?
>     Any hints would be useful,
>     -- Peter Fairbrother

More information about the ukcrypto mailing list