Data held by ISPs

Roland Perry lists at
Wed Dec 24 09:04:25 GMT 2014

In article 
<20141223113914.Horde.2RPTxWNTzFnSxdvcKNnB5g2 at>, Paul 
Brown <pol at> writes

>> IP addresses (of the subscriber) are personal data.
>Surely they're only personal data for the duration of them being 
>allocated to that user, otherwise you fall foul of the "?Adequate, 
>relevant and not excessive" principle, as the IP address could now be 
>associated with another individual.

The passage of time does not make historic data no longer "personal 
data". For example, if someone converted from Christianity to Islam, 
both facts remain [sensitive] personal data.

Considerations of accuracy would arise when plotting the timeline of the 
person's religious beliefs, and the data is excessive if the reason it's 
being collected is irrelevant (eg you don't need to know someone's 
religion to issue them with a TV licence).
Roland Perry

More information about the ukcrypto mailing list