The General Data Protection Regulation (GDPR) comes into force on 25 May 2018.
The GDPR replaces the Data Protection Act 1998 and is the biggest change to the way organisations like the University process personal data in a generation.
The GDPR is a piece of European Legislation but despite Brexit, it will come into force in the UK and the Data Protection Bill is currently making its way through Parliament to enshrine this in UK law.
One of the biggest changes is that the University must be able to demonstrate that it is compliant and so policies, procedures, guidance and notices covering the University’s activity must be in place.
These pages provide guidance to University on the changes and what employees need to do to ensure that their work and their processing of personal data is compliant with the new Regulation and will be updated on a regular basis throughout 2018.