Manorlounger
Well-known member
- Joined
- 6 Dec 2017
- Messages
- 8,922
Yup, same here.Just had a message recall request with all the addresses ccd in again
Yup, same here.Just had a message recall request with all the addresses ccd in again
snapYup, same here.
I was a little more creative and emailed Niall McWilliams using the email address provided! (not his official address) Bit naughty but, makes a point.I have emailed Chris Wiiliams
Could be problematic if there are FOSB members on that list...
They have to careful with that. It classes as a data breach if it contains identifiable info like firstname.lastname@gmail.com. probably not much risk to those involved but could be a slap on the wrist from the ICO.Just had a message recall request with all the addresses ccd in again
Being a nosey sod, I took the time to go through all of the emails addresses that the message had so kindly presented to me.
There was one for a Steven Hill, so that might be Tacky Steve from Nextdoor? No others stood out to me, but he club were aware that some of the opposition were listening in to the first Zoom Meeting.
Hopefully, no harm will come from it or he could sue the club.I googled that Steven Hill using his email address as a clue to where he works and it's a different Steven Hill who is a familiar face at the football.
But the fact I was able to do that very simply is evidence of what a monumental balls up this is.
I think this is being handled by the consultants that the club are employing, not actual club employees.Hopefully, no harm will come from it or he could sue the club.
I imagine this has happened because this mailing list is being managed independently of the club's usual mailing list. That's often how these things happen in my experience but proves that the club needs to have better processes in place when dealing with personal data.
it really is basics- as in not paying attention to them! - whatever fee the consultants are being paid, the club should claim a sizable chunk back as the consultants have cocked up big time IMOI think this is being handled by the consultants that the club are employing, not actual club employees.
In any event it's a massive cock up, which does not exactly show the club, and their stadium team, in a good light.
Good point - I hadn't realised that but the club might still be the data controller in GDPR terms.I think this is being handled by the consultants that the club are employing, not actual club employees.
In any event it's a massive cock up, which does not exactly show the club, and their stadium team, in a good light.
Looks very amateur hour unfortunately.I think this is being handled by the consultants that the club are employing, not actual club employees.
In any event it's a massive cock up, which does not exactly show the club, and their stadium team, in a good light.
Agree. The club is legally obliged to do so as soon as they become aware of the breach. It's not a big one as you said unless a Swindon resident can now be identifed as an Oxford fan so should just result in a slap on the wrist.If I were the club, I’d be ensuring that the ICO is informed. It will be seen as a very minor issue (with no detailed personal information shared) but the ICO will always be look on these things favourably if they are self-declared.
I have spoken with the club, as any breach of supporters information is of huge concern. All relevant procedures are being followed since the breach was discovered - including sending out the recall email which might have appeared counter-intuitive but is part of the process! It is a minor breach but will be declared.If I were the club, I’d be ensuring that the ICO is informed. It will be seen as a very minor issue (with no detailed personal information shared) but the ICO will always look on these things favourably if they are self-declared.