Quote from: dublinfella on December 13, 2010, 04:38:27 PMQuote from: Zapatista on December 13, 2010, 03:54:36 PM
From the GAA's highlighting of this I gather it was info entered voluntarily by clubs. The GAA didn't request this info but some clubs included it for some members. There might have been other info included for various reason but the health info was the only info deemed a high enough concern to contact these members directly. This health related data was not requested of the clubs and the GAA never intended it to be on the system. It may have been a few club secretaries thinking they were doing a good job. Which they were, i'm sure no expected the data to be misused.
I assume the data was all entered by the clubs individually straight onto the system. This will always lead to mistakes and needless info going onto a system if you aren't very specific to the data required.
If that was the scenario, that was a HUGE data protection clanger dropped by the GAA. They stored medical information they didn't intend to by accident and then it got out?!?
I think you need to look at the company managing the data for blame there. It shouldn't matter what is on it if it's secure. When dealing with data of half a million members data being collected and inputed by ametuers/volunteers you are going to have mistakes. That's one of the reasons it should be secure. I'd love to see the needless info Tesco has on me.