Data in business Emails - What can and can't be included?
Discussion
Despite a rigour search of the ICO website I can't find an answer to this so thought I'd ask those in the know from the PH massive.
The small business I now work for sends out chase emails for payment.
I've just moved from a much larger financial services org that had a compliance dept. Their view was no account information could be included in emails as they were not secure.
Current organisation offers short term instalment funding to consumers.
Can anyone point me to information that is prescriptive on what can and cannot be included in emails about these accounts.
Can we, for example say " In order to release your next order we require payment of £300 to your account" or would that be breaching DPA
Previous org said the max we could say was "Please contact us on Tel:XXXXXXXXX". We couldn't even mention the customer had an account.
Thanks in advance.
The small business I now work for sends out chase emails for payment.
I've just moved from a much larger financial services org that had a compliance dept. Their view was no account information could be included in emails as they were not secure.
Current organisation offers short term instalment funding to consumers.
Can anyone point me to information that is prescriptive on what can and cannot be included in emails about these accounts.
Can we, for example say " In order to release your next order we require payment of £300 to your account" or would that be breaching DPA
Previous org said the max we could say was "Please contact us on Tel:XXXXXXXXX". We couldn't even mention the customer had an account.
Thanks in advance.
Welcome to the real world. You can put pretty much what you like in an email, but you're in trouble if you send it to the wrong place!
https://ico.org.uk/for-organisations/guide-to-data...
https://ico.org.uk/for-organisations/guide-to-data...
Gassing Station | Business | Top of Page | What's New | My Stuff