BA off duty staff with access to Flight Passenger List on Flight - EU GDP Breach?
Apr 19, 2019, 4:29 pm
#16
Join Date: Oct 2015
Location: London
Programs: BAEC Gold, Hotels.com Gold
Posts: 576
Apr 19, 2019, 4:30 pm
#17
FlyerTalk Evangelist
Join Date: Nov 2011
Location: Brighton. UK
Programs: BA Gold / VS /IHG Diamond & Ambassador
Posts: 14,195
Just complain to BA. You are just asking for people here to give you some validity.
Not sure what your status has to do with it either.
Just email BA but cut out the non relevant stuff about who was drinking what because it is not relevant.
The email address for the BA data controller is easily found as is that of the Information Commissioners Office.
Not sure what your status has to do with it either.
Just email BA but cut out the non relevant stuff about who was drinking what because it is not relevant.
The email address for the BA data controller is easily found as is that of the Information Commissioners Office.
Apr 19, 2019, 4:33 pm
#18
Join Date: Mar 2016
Location: Plymouth, UK
Programs: BAEC Gold
Posts: 1,159
I have to admit to being a bit of a stickler for rules when it comes to this kind of thing (alright, more than a bit!), but even I couldn't find anything to worry about there. I suppose that, strictly speaking, off-duty staff should not have access to operational material but the reality of most work environments is that staff generally do have access to operational material like this when off duty in most work environments I have worked in. Perhaps they should not access such material when off duty but again... people do. The only issue there for me, and it is a very small issue, is that they allowed non-staff to view material over their shoulder but I am not sure that was so bad that it needs reporting... or even being worried about.
I think that to proceed with an official complaint would be petty in the extreme. Sorry.
I think that to proceed with an official complaint would be petty in the extreme. Sorry.
Apr 19, 2019, 4:34 pm
#19
A FlyerTalk Posting Legend
Join Date: Aug 2006
Location: Argentina
Posts: 40,210
I find it incredible you observed so much of what was going on.
SIS are looking for folk like you.
SIS are looking for folk like you.
Apr 19, 2019, 4:36 pm
#20
Join Date: May 2018
Programs: BAEC Silver
Posts: 219
I understand your point that the data should only be accessed by on duty staff. However, while it may be a little naughty of the off-duty individual, a raw list of names would struggle to breach any data protection rules.
Apr 19, 2019, 4:39 pm
#21
Join Date: Jan 2012
Location: London
Programs: BA BLUE BADGE
Posts: 1,323
Did you memorise all this or take notes as it was happening?
I feel as though I was there.
Well done.^
I feel as though I was there.
Well done.^
Apr 19, 2019, 4:45 pm
#22
Join Date: Dec 2007
Posts: 3,595
I was under the impression that only operating crew for a specific flight have the ability to upload the passenger manifest info screen on the company iPad.
I was aware up until a couple of years ago this was not the case and that any crew member could pull up any flight data / passenger list of any flight operating on that day. This was clearly a breach of too much data and this control was subsequently tightened.
Perhaps the crew in question were positioning and had been intended to operate but for whatever reason we're not however were already security cleared to access the data based upon their intended roster?
Regardless as to the semantics, this is clearly a somewhat disturbing report that secure data is being mishandled as this clearly had no use to the positioning crew. I'd have liked to think the operating CSM would have reminded the off duty crew of their professional obligations and to query their intentions before considering taking the matter further on arrival. I don't think it would have been appropriate for them to have discussed this any further with a passenger. It would have been an internal matter.
I was aware up until a couple of years ago this was not the case and that any crew member could pull up any flight data / passenger list of any flight operating on that day. This was clearly a breach of too much data and this control was subsequently tightened.
Perhaps the crew in question were positioning and had been intended to operate but for whatever reason we're not however were already security cleared to access the data based upon their intended roster?
Regardless as to the semantics, this is clearly a somewhat disturbing report that secure data is being mishandled as this clearly had no use to the positioning crew. I'd have liked to think the operating CSM would have reminded the off duty crew of their professional obligations and to query their intentions before considering taking the matter further on arrival. I don't think it would have been appropriate for them to have discussed this any further with a passenger. It would have been an internal matter.
Apr 19, 2019, 4:49 pm
#23
Suspended
Original Poster
Join Date: Sep 2018
Location: Somewhere in the Air
Programs: BA GGL, *A Silver, OW Emerald, HH Diamond, Karahi Express
Posts: 554
I was under the impression that only operating crew for a specific flight have the ability to upload the passenger manifest info screen on the company iPad.
I was aware up until a couple of years ago this was not the case and that any crew member could pull up any flight data / passenger list of any flight operating on that day. This was clearly a breach of too much data and this control was subsequently tightened.
Perhaps the crew in question were positioning and had been intended to operate but for whatever reason we're not however were already security cleared to access the data based upon their intended roster?
Regardless as to the semantics, this is clearly a somewhat disturbing report that secure data is being mishandled as this clearly had no use to the positioning crew. I'd have liked to think the operating CSM would have reminded the off duty crew of their professional obligations and to query their intentions before considering taking the matter further on arrival. I don't think it would have been appropriate for them to have discussed this any further with a passenger. It would have been an internal matter.
I was aware up until a couple of years ago this was not the case and that any crew member could pull up any flight data / passenger list of any flight operating on that day. This was clearly a breach of too much data and this control was subsequently tightened.
Perhaps the crew in question were positioning and had been intended to operate but for whatever reason we're not however were already security cleared to access the data based upon their intended roster?
Regardless as to the semantics, this is clearly a somewhat disturbing report that secure data is being mishandled as this clearly had no use to the positioning crew. I'd have liked to think the operating CSM would have reminded the off duty crew of their professional obligations and to query their intentions before considering taking the matter further on arrival. I don't think it would have been appropriate for them to have discussed this any further with a passenger. It would have been an internal matter.
Apr 19, 2019, 4:55 pm
#24
Suspended
Original Poster
Join Date: Sep 2018
Location: Somewhere in the Air
Programs: BA GGL, *A Silver, OW Emerald, HH Diamond, Karahi Express
Posts: 554
Just complain to BA. You are just asking for people here to give you some validity.
Not sure what your status has to do with it either.
Just email BA but cut out the non relevant stuff about who was drinking what because it is not relevant.
The email address for the BA data controller is easily found as is that of the Information Commissioners Office.
Not sure what your status has to do with it either.
Just email BA but cut out the non relevant stuff about who was drinking what because it is not relevant.
The email address for the BA data controller is easily found as is that of the Information Commissioners Office.
Apr 19, 2019, 4:58 pm
#25
Join Date: Aug 2015
Location: London
Programs: BA
Posts: 240
Access to the passenger list's is controlled and only those colleagues with a clear business need have access that also includes non-operating crew e.g. ( other colleagues with clear business need). I think you making too many presumptions. I won't go into detail but only certain roles have access to the PIL and it's logged and controlled. I'm more concerned as to why you felt it necessary to look at someone else's personal iPad in detail.
Last edited by BABenchley; Apr 19, 2019 at 5:06 pm
Apr 19, 2019, 4:59 pm
#26
Suspended
Original Poster
Join Date: Sep 2018
Location: Somewhere in the Air
Programs: BA GGL, *A Silver, OW Emerald, HH Diamond, Karahi Express
Posts: 554
Apr 19, 2019, 5:03 pm
#27
Suspended
Original Poster
Join Date: Sep 2018
Location: Somewhere in the Air
Programs: BA GGL, *A Silver, OW Emerald, HH Diamond, Karahi Express
Posts: 554
These off duty staff were drawing attention to themselves during boarding and as i was sat 1 row behind i could hear and see everything. I was not intentionally looking at someone elses personal IPAD. So please do not take this thread off at a tangent.
Apr 19, 2019, 5:08 pm
#28
Suspended
Original Poster
Join Date: Sep 2018
Location: Somewhere in the Air
Programs: BA GGL, *A Silver, OW Emerald, HH Diamond, Karahi Express
Posts: 554
Apr 19, 2019, 5:10 pm
#29
Community Director
Join Date: Jan 2009
Location: Norwich, UK
Programs: A3*G, BA Gold, BD Gold (in memoriam), IHG Diamond Ambassador
Posts: 8,476
It has already been necessary to delete a number of posts which breached rule 12, and the tone of the thread is increasingly that of too much heat and not much new substance.
As the OP has received some advice on the likely view given the perceived seriousness, and who to contact if they still feel a complaint is justified, it’s therefore time for the padlock.
/mod
As the OP has received some advice on the likely view given the perceived seriousness, and who to contact if they still feel a complaint is justified, it’s therefore time for the padlock.
/mod