Data protection rights under GDPR
From 25 May 2018, UK data protection law gives people a wider range of rights in relation to their personal data. The rights are as follows:
- The right to be informed (i.e. told how your data will be used, for example by means of a privacy notice)
- The right of access to your personal data held by an organisation
- The right to have inaccurate data corrected
- The right to erasure (known as ‘the right to be forgotten’)
- The right to restrict processing of your personal data
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling
Some of these rights won’t apply in all circumstances, but they do give you a good deal of control over how your information is used by organisations such as BGU.
Requesting action in regards to personal data held by BGU
If you wish to submit a request to the University under the data protection rights outlined above, please send your request via email: Regulatorycompliance@bishopg.ac.uk or in writing to Registrar, Bishop Grosseteste University, Longdales Rd, Lincoln. LN1 3DY.
- A clear outline of the action you require.
- Scanned copies of two documents as proof of identity (e.g. passport, birth certificate, driving licence or campus card). Make sure one of the forms of ID has your current postal address.
- If you are submitting the request on behalf of someone else, a signed form of authority so we can establish that you are entitled to access their data.
Requests can be emailed to Regulatorycompliance@bishopg.ac.uk or sent in writing to Registrar, Bishop Grosseteste University, Longdales Rd, Lincoln. LN1 3DY.
If you have any concerns about how the University uses your data, or would like us to help you exercise your rights as listed above, contact the University’s Information Compliance team via email: Regulatorycompliance@bishopg.ac.uk or in writing to Registrar, Bishop Grosseteste University, Longdales Rd, Lincoln. LN1 3DY.
It is important that you familiarise yourself with the following policies and procedures relevant to GDPR:
- Data Breach Policy
- Fair Processing Policy – Staff
- Fair Processing Policy – Student
- IT Systems Acceptable Use Policy
- IT Systems Security Policy
- CCTV Policy (draft)
- Data Protection Policy
Staff should also refer to the data housekeeping rules that have been circulated.
FAQs can be access here.