Advertisement
Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.
Hi all, please see this major site announcement: https://www.boards.ie/discussion/2058427594/boards-ie-2026

Is GDPR a bit OTT?

  • 18-04-2019 02:35PM
    #1
    [Deleted User]
    Posts: 13,839 ✭✭✭✭


    It’s seems that the HSE dept that I deal with will no longer converse in emails due to GDPR and I’m wondering if they have taken it a bit too far.

    For context - my father has required carers for some time now and at the beginning this was provided by the same agency the majority of the time. Last year the HSE had a recruitment drive and the same carers moved from being employed by the agency to directly employed by HSE.

    Was chatting to one of the carers at the time about hours, mileage, general stuff and said to her could she not email her hours on. She said they wasn’t allowed to do this because of GDPR.

    Coming up to Christmas letter from HSE arrives in post asking what days/times carers would be required over holiday period. I filled out form, took a photo and rang up for email address to send it back to. I was told it had to be posted because of GDPR.

    HSE now have an embargo on recruitment again and have cut their direct employee hours/days and are using the services of different agencies. It’s been a complete mess with carers not turning up, not being allowed to do certain tasks anymore (that’s another story) and I don’t know who to expect from where and when. So, I called asking to be sent a copy of the rota not looking for individual names but just a breakdown of what days/times would we have HSE carers and what different agencies would be coming on which days (including contact details for office). You guessed it! No can do due to GDPR.

    Is this what GDPR means?


«1

Comments

  • #2
    dudara
    Registered Users, Registered Users 2 Posts: 33,518 ✭✭✭✭dudara


    GDPR is about the protection (during collection, storage, processing and disposal) of personal data.

    It’s fundamentally a good thing, but too many organisations have either (a) misinterpreted it when implementing it or (b) are using it to cover their asses.


  • #3
    Richard Hillman
    Registered Users, Registered Users 2 Posts: 12,033 ✭✭✭✭Richard Hillman


    GDPR and that nonsense where you have to click to accept cookies on every single website. The EU wielding its nonsense.


  • #4
    Deebles McBeebles
    Registered Users, Registered Users 2 Posts: 5,969 ✭✭✭Deebles McBeebles


    Yes it is.


  • #5
    JohnnyFlash
    Registered Users, Registered Users 2 Posts: 7,055 ✭✭✭JohnnyFlash


    I like it. A business tried to fück me over before Christmas and I put in a data access request under GDPR. Turns out they were forwarding my emails and personal info without permission. I’ve a complaint lodged and I look forward to them getting a fine, just so I can call into their office and tell the owner to go fück himself.


  • #6
    Utter Consternation
    Registered Users, Registered Users 2 Posts: 964 ✭✭✭Utter Consternation


    JohnnyFlash wrote: »
    I like it. A business tried to fück me over before Christmas and I put in a data access request under GDPR. Turns out they were forwarding my emails and personal info without permission. I’ve a complaint lodged and I look forward to them getting a fine, just so I can call into their office and tell the owner to go fück himself.

    Did www. inflatablesexdolls.ie use your personal data for nefarious purposes?


  • Advertisement
  • #7
    [Deleted User]
    Posts: 13,839 ✭✭✭✭ [Deleted User]


    JohnnyFlash wrote: »
    I like it. A business tried to fück me over before Christmas and I put in a data access request under GDPR. Turns out they were forwarding my emails and personal info without permission. I’ve a complaint lodged and I look forward to them getting a fine, just so I can call into their office and tell the owner to go fück himself.

    But in my case the personal data about my dad was with his (mine) approval. And the rota could have said HSE staff, Agency 1 staff, Agency 2 staff, etc.

    Is GDPR only for electronic communications?


  • #8
    Anteayer
    Closed Accounts Posts: 875 ✭✭✭Anteayer


    It's the HSE's interpretation of GDPR that’s the issue.
    There’s nothing in it that prevents them from communicating with you by email other than possibly they don’t want a paper trail.

    They were subject to domestic Freedom of Information laws before that and again that created issues.

    Big bureaucracies tend to just jump on “computa says no” or “European regulations” non explanations because they’re an easy catch all.


  • #9
    [Deleted User]
    Posts: 13,839 ✭✭✭✭ [Deleted User]


    Ah, send something in the post and they can always say “we never received it”. Send something electronically and the proof is there.


  • #10
    BattleCorp
    Registered Users, Registered Users 2 Posts: 11,867 ✭✭✭✭BattleCorp


    Their excuse is a load of sh1te.

    It's the same information regarding whether it is in a letter or in an email.


  • #11
    jimgoose
    Registered Users, Registered Users 2 Posts: 20,237 ✭✭✭✭jimgoose


    The problem isn't GDPR, GDPR is a positive and useful thing. The problem is the HSE, and the lengths they will go to in trying to prevent people from being able to prove what malevolently incompetent, lying fuckers they are.


  • Advertisement
  • #12
    Wibbs
    Moderators, Science, Health & Environment Moderators, Society & Culture Moderators Posts: 60,387 Mod ✭✭✭✭Wibbs


    Strawberry Milkshake wrote: »
    Ah, send something in the post and they can always say “we never received it”. Send something electronically and the proof is there.
    Good advice there. I was dealing with the HSE for a few years and got a couple of “we never received it” answers, so I took to sending the important stuff by registered post. Nipped that in the bud.

    Many worry about Artificial Intelligence. I worry far more about Organic Idiocy.



  • #13
    jimgoose
    Registered Users, Registered Users 2 Posts: 20,237 ✭✭✭✭jimgoose


    Wibbs wrote: »
    Good advice there. I was dealing with the HSE for a few years and got a couple of “we never received it” answers, so I took to sending the important stuff by registered post. Nipped that in the bud.

    That is textbook HSE.


  • #14
    [Deleted User]
    Posts: 13,839 ✭✭✭✭ [Deleted User]


    So would this be all over the HSE or just a decision by the dept I deal with? Don’t want to get into an argument with them about it as I need them a lot more than they need me!

    Just thought the reason for no email made no sense.


  • #15
    hairyprincess
    Registered Users, Registered Users 2 Posts: 2,300 ✭✭✭hairyprincess


    Out of curiosity, what tasks are they not allowed to do anymore?


  • #16
    Mrs OBumble
    Registered Users, Registered Users 2 Posts: 27,087 ✭✭✭✭Mrs OBumble


    Anteayer wrote: »
    It's the HSE's interpretation of GDPR that’s the issue.
    There’s nothing in it that prevents them from communicating with you by email other than possibly they don’t want a paper trail.

    Not really true.

    Sending by email is inherently insecure. Unless you have encryption in place, it's like writing the data on a postcard and sending it thru the mail.

    Pre GDPR lots of organisations took the risk and emailed things anyway. But now there are big penalties if just one privacy freak justifiably complains about how their data is managed, so the organisations are saying "no, the risk is now too large".

    So we all have to put up with the scenarios you describe.

    Some are being too zealous - but for example in the agency vs HSE rota example there is the data of both the patient and the employees involved. Some privacy-freak families would even see the fact that someone in the family is getting home help as sensitive data.


  • #17
    JohnnyFlash
    Registered Users, Registered Users 2 Posts: 7,055 ✭✭✭JohnnyFlash


    Utter Consternation wrote: »
    Did www. inflatablesexdolls.ie use your personal data for nefarious purposes?

    Never heard of them - not my scene. At least you found something to go down on you.


  • #18
    BattleCorp
    Registered Users, Registered Users 2 Posts: 11,867 ✭✭✭✭BattleCorp


    hairyprincess wrote: »
    Out of curiosity, what tasks are they not allowed to do anymore?

    Work


  • #19
    Sultan of Bling
    Registered Users, Registered Users 2 Posts: 2,248 ✭✭✭Sultan of Bling


    I find a lot of places try to get out of answering any sort of query by using the line "we can't disclose that due to GDPR".

    When they use it on me, I always ask them under what section of the GDPR act are they referring to, cue stony silence.


  • #20
    [Deleted User]
    Posts: 13,839 ✭✭✭✭ [Deleted User]


    Agencies can’t shave someone now just Incase they knick them. HSE can even though their qualifications and training are exactly the same.

    Not an issue for us as there’s others around but if my dad was on his own, what with him being paralysed down one side of his body, would be a problem if all he had was agency staff.


  • #21
    The J Stands for Jay
    Registered Users, Registered Users 2 Posts: 5,932 ✭✭✭The J Stands for Jay


    Mrs OBumble wrote: »
    . Some privacy-freak families would even see the fact that someone in the family is getting home help as sensitive data.

    The legislation gets to decide what is sensitive data, not some oddball family member.


  • Advertisement
  • #22
    jimgoose
    Registered Users, Registered Users 2 Posts: 20,237 ✭✭✭✭jimgoose


    Mrs OBumble wrote: »
    Not really true.

    Sending by email is inherently insecure. Unless you have encryption in place, it's like writing the data on a postcard and sending it thru the mail.

    Pre GDPR lots of organisations took the risk and emailed things anyway. But now there are big penalties if just one privacy freak justifiably complains about how their data is managed, so the organisations are saying "no, the risk is now too large".

    So we all have to put up with the scenarios you describe.

    Some are being too zealous - but for example in the agency vs HSE rota example there is the data of both the patient and the employees involved. Some privacy-freak families would even see the fact that someone in the family is getting home help as sensitive data.

    I can guarantee you that the HSE are using the "GDPR" line for their own nefarious reasons, and not because they give a scuttery freestyle fuck about anyone's privacy.


  • #23
    Utter Consternation
    Registered Users, Registered Users 2 Posts: 964 ✭✭✭Utter Consternation


    JohnnyFlash wrote: »
    Never heard of them - not my scene. At least you found something to go down on you.

    Apologies compadre, seemed like the type of thing you'd be interested in.

    My mistake.


  • #24
    [Deleted User]
    Posts: 13,839 ✭✭✭✭ [Deleted User]


    McGaggs wrote: »
    The legislation gets to decide what is sensitive data, not some oddball family member.

    But I’m giving the permission for our family. When there’s a car outside that says “Carers” on it, everyone knows we’re getting assistance anyway.


  • #25
    JohnnyFlash
    Registered Users, Registered Users 2 Posts: 7,055 ✭✭✭JohnnyFlash


    Utter Consternation wrote: »
    Apologies compadre, seemed like the type of thing you'd be interested in.

    My mistake.

    No problems, hombre. They might have a model in stock that looks like Mary Lou McDonald - seems like the type of thing you might be into.


  • #26
    Utter Consternation
    Registered Users, Registered Users 2 Posts: 964 ✭✭✭Utter Consternation


    JohnnyFlash wrote: »
    No problems, hombre. They might have a model in stock that looks like Mary Lou McDonald - seems like the type of thing you might be into.

    I don't like to bring politics into my sex life. It's the anti-dote to a horn.


  • #27
    Seth Brundle
    Moderators, Politics Moderators, Paid Member Posts: 46,255 Mod ✭✭✭✭Seth Brundle


    The HSE being over-zealous with the OP and at the same time not giving a shíte about another poster...
    HSE Data Breach

    Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/ .



  • #28
    branie2
    Registered Users, Registered Users 2 Posts: 10,372 ✭✭✭✭branie2


    I certainly think so


  • #29
    [Deleted User]
    Posts: 2,093 ✭✭✭ [Deleted User]


    Was in a hospital in the midlands a few years ago. They had files stacked everywhere, in corridors etc. I am willing to bet much of it contained sensitive patient data. So much for GDPR only applying to electronic records and paper records being somehow safer !


  • #30
    uck51js9zml2yt
    Closed Accounts Posts: 18,252 ✭✭✭✭uck51js9zml2yt


    [Deleted User] wrote: »
    Was in a hospital in the midlands a few years ago. They had files stacked everywhere, in corridors etc. I am willing to bet much of it contained sensitive patient data. So much for GDPR only applying to electronic records and paper records being somehow safer !

    Gdpr only came into effect 25 may 2018.

    Have you a point to make other than files could be taken by anyone for any purpose.?


  • Advertisement
  • #31
    TheChizler
    Registered Users, Registered Users 2 Posts: 9,568 ✭✭✭TheChizler


    My GF used to do some admin work for a HSE office pre GDPR days, she wasn't allowed to email any personal data, fair enough, but there was zero issue with faxing it. It would be so easy for you to put in the wrong fax number or for the wrong person to pick it up from the machine. Bizarre.


Advertisement
Advertisement