CLUBS’ DATA IS SECURE
FBHVC says that members details are safe following RAC data ‘ leak’
The Federation of British Historic Vehicle Clubs (FBHVC) has reiterated that members’ personal and private data is safe among its affiliated organisations – after two motor industry employees received suspended jail sentences earlier this month.
FBHVC communications officer, Wayne Scott, said: ‘Many clubs have dedicated General Data Protection Regulation (GDPR) volunteers, others use members of staff, but across the board we are seeing that, although some are still grappling with what they can and cannot do on a detail level, the vast majority of car clubs have implemented processes, people and facilities to comply with the regulations and look after their members’ data.’
Stolen phone numbers, addresses and credit card data can be used in online scams and nuisance calls. In the case of a two-year prosecution recently concluded by the Information Commissioner’s Office (ICO), an RAC staff member transferred personal data from the RAC to an accident claims management firm without the permission of the account holder. An ICO investigation found that Kim Doyle, who worked for the RAC, had unlawfully compiled accident data containing personal details; the ICO found evidence that this information was used to make nuisance calls.
ICO criminal investigation team group manager, Mike Shaw, said: ‘These criminal acts have a detrimental impact on the public and businesses. People’s data is being accessed without consent and [as a result] businesses are putting resources into tracking down criminals.
‘Once the data is in the hands of claims management companies, people are subjected to unwanted calls which can in turn lead to fraudulent personal injury claims.’
The Federation, which was itself a recent victim of a ‘phishing’ scam aimed at capturing club members’ details, said that enthusiasts’ personal data was protected by General Data Protection Regulation.
Wayne Scott added: ‘The FBHVC would advise that clubs should regularly review and update their data handling processes, we suggest at least annually, to ensure they remain compliant. That review process is also part of the requirements from the ICO.’
] fbhvc.co.uk
] ico.org.uk