Hi and thanks but there is currently nothing at HDC and there may not be (depending on what route I decide in time). However the original main question was (a little clarified):
Within the context of Health and Privacy: Does anyone know what the rules/laws are relating to a 3rd party who refuses to destroy an email that was erroneously sent to them? Or recipients he may have also sent on too?
There doesn't seem to be much or any coverage for this in HIPC or Privacy Act. Usually when this has happened in the pas the recipient has acted in good faith and dealt whit he situation with integrity eg disposal or advice and return to sender.