Brentford Dock GDPR and the data they hold of residents. For Brentford Dock Ltd (“BDL”) chaired by Veronica Wray, Mike Edwards deputy chair, and Michael Richards & Co (“MR&Co”, data processors for BDL) to state in the 9th November 2017 minutes that BDL (data controllers) “held very little secure data” is greatly misleading.
Data Brentford Dock holds of residents, shareholders and tenants includes the following, all of which IS sensitive data.
Names and addresses of owners, residents and tenants. Property owners or their managing agents are required to notify and inform Brentford Dock Ltd of any change in tenancies and provide the necessary data.
Contact details: telephone numbers, email addresses of owners, residents and tenants.
Conveyancing data. Property and Garage ownership data.
Data for the Share Register of owners (shareholders in Brentford Dock Ltd).
Cheque, direct debit and standing order data for service charge payments. This obviously includes Bank account details.
Service charge billing amounts per flat/owner (and the analysis of such data for matters such as arrears).
Passwords and usernames to access the Shareholders Area on the Brentford Dock website where service charge payments are made.
Data for the Brentford Dock resident parking scheme (in order for residents to obtain parking permits):
Vehicle registration details (for proof of ownership), car details collated to the owners, residents, tenants apartment addresses and tenancy agreement data. All of which is statutory, as stipulated in the Residents Hand Book and Tenants Hand Book.
Brentford Dock CCTV images of residents and their vehicles.
Key holding data, and the terms each resident has set for their release and usage. Residents/tenant are “encouraged to make use of BDL’s key holding service”… “you must register your keys with the management office to benefit from this service” as stated in the tenant’s handbook.
Details relating to the sublet fee of £200 per annum charged to owners.
Details of residents who moor boats in the Brentford Dock marina, fees paid/arrears.
Syon Park pass application data. Pass swipe cards purchased from the management office.
Email and letter correspondence between residents and Brentford Dock Ltd and their managing agents Michael Richards & Co including correspondence for complaints. This includes emails to personal email accounts used by the Brentford Dock directors before the introduction of the Brentford Dock group email facility.
Security reports including sensitive information given for criminal and antisocial behaviour reports made by residents.
This is not a small inconsequential amount of secure data, or are we to believe from what BDL has said that BDL holds very little data that is secure?
It is clear from the statement that the Brentford Dock Ltd chairman Veronica Wray and “her” board have a very dismissive and contemptible attitude towards the residents.
Brentford Dock Ltd has already breached the Data Protection Act.
Brentford Dock is the data controller and holds full responsibility for data held by other parties such as Michael Richards and Trigion who are data processors for Brentford Dock Ltd.
In May some residents received a letter from Brentford Dock and or Michael Richards & Co (John Antrobus) concerning Brentford Dock GDPR and the data they hold of residents. This letter from the Brentford Dock management clearly understates the amount of data Brentford Dock holds of residents.
Brentford Dock GDPR, residents can apply to Brentford Dock to obtain details of the data BDL holds on them by means of a Subject Access Request under the Data Protection Act. The new General Data Protection Regulation (“GDPR”) were enacted on the 25th of May 2018. The Information Commissioner’s Office is empowered to enforce these regulations.
Click here BrentfordTW8 for additional reading.