The Oxford University Conservative Association (OUCA) has left in Cc the e-mail addresses of all recipients of this week’s edition of its newsletter, sent earlier today.
The number of email addresses that recipients can see would be different, with some claiming to have access to 86 names and addresses and others saying they can see around 200. The emails were sent in alphabetical groups, and it is believed that there could be a total of 1000 addresses and names disclosed.
The inclusion of this information is a material breach of personal data and could be punished by law. Under the General Data Protection Regulation (GDPR), email addresses must be stored privately and treated with strict confidentiality.
Disclosure of this information also violates the rules of the OUCA constitution. In accordance with Article 3 (10) (f) of its Rules and Regulations: âThe Director of Communications shall ensure that all Association communications which he distributes, including the website, comply with the provisions relevant data protection law, supervisors and assessors memorandum, university codes
and decrees, and other applicable laws. ‘
The Student Union Data Protection Handbook also states that the Bcc (Blind Carbon Copy) field on the email address line should be used in all mass communications.
The Oxford Student contacted OUCA for comment.
Photo by John Schnobrich on Unsplash
Edited 04/20/2020 to include: The emails were sent in alphabetical groups, and it is believed that there could be a total of 1,000 addresses and names disclosed.
Want to contribute? Join our group of contributors here or write to us – click on here for the coordinates