|
Unauthorised disclosure by data processor.
|
21.—(1) Personal data processed by a data processor shall not be disclosed by him, or by an employee or agent of his, without the prior authority of the data controller on behalf of whom the data are processed.
|