To ask the Secretary of State for the Home Department to what investigations his Department has been subject by the Data Protection Registrar in relation to a suspected breach of a data protection principle; if he will summarise the nature of each complaint and state when the complaint was made; and what remedial action was taken by his Department to ensure future compliance with the principle subject to the investigation.
[holding answer 21 May 1993]: The Data Protection Registrar has recorded 10 complaints against the Home Office. The registrar does not have detailed records of these complaints available, but gives the following information:
Complaint type | Number received | Date received |
Principle 4 | 1 | 27 January 1993 |
Principle 5 | 1 | 16 December 1991 |
Principle 7 | 6 | 12 November 1987 |
25 February 1988 | ||
12 June 1989 | ||
28 September 1989 | ||
5 November 1991 | ||
15 March 1993 | ||
Section 5(1) | 1 | 10 February 1990 |
Unauthorised disclosure | 1 | 26 March 1992 |
Since 1987, every Home Office department has held detailed instructions on compliance with the requirements and principles of the Data Protection Act in general, and on subject access procedures specifically. None of the complaints made to date suggests that those procedures need any amendment. The procedures are, however, kept under review and will be updated as and when necessary.