A 'secondary' request for access to data may be defined as any request being made which does not fall into the category of a primary request.
Before complying with a secondary request, the data controller shall ensure that:
- the request does not contravene, and that compliance with the request would not breach, current relevant legislation, (eg. GDPR, Data Protection Act 2018, Human Rights Act 1998, section 163 Criminal Justice and Public Order Act 1994, etc);
- any legislative requirements have been complied with, (e.g. the requirements of the Data Protection Act 2018);
- due regard has been taken of any known case law (current or past) which may be relevant, (eg. R v Brentwood BC ex p. Peck); and
- the request would pass a test of 'disclosure in the public interest'.
If, in compliance with a secondary request to view data, a decision is taken to release material to a third party, the following safeguards shall be put in place before surrendering the material:
- in respect of material to be released under the auspices of 'crime prevention', written agreement to the release of the material should be obtained from a police officer, not below the rank of Inspector. The officer should have personal knowledge of the circumstances of the crime/s to be prevented and an understanding of the CCTV System Code of Practice.
- if the material is to be released under the auspices of 'public well being, health or safety', written agreement to the release of material should be obtained from a senior officer within the Local Authority. The officer should have personal knowledge of the potential benefit to be derived from releasing the material and an understanding of the CCTV System Code of Practice.
Recorded material may be used for bona fide training purposes such as police or staff training. Under no circumstances will recorded material be released for commercial sale of material for training or entertainment purposes.