General Data Protection Regulation (GDPR) – Are you up to date?

What is GDPR? What do you need to do? How do I complete the training?

General Data Protection Regulation (GDPR) – Are you up to date?

What is it?
European legislation which came into force in May 2018.

How is it different from the Data Protection Act?
Although the basic principles for looking after personal data remain the same, GDPR establishes stricter standards around the processing of data and the handling of data breaches. The maximum penalty for non-compliance is increasing from £500,000 to €20,000,000.

What should I do?
• Continue to meet our obligations by complying with the Data Protection Act 2018 and the provisions made in GDPR.
• Follow good practice issued by the Information Compliance Office alongside following the university’s policies.
• Complete the GDPR online training
Where can I find out more?
Please contact the University’s Information Compliance Team:

Mandatory Online GDPR Training

It is a requirement that all staff have completed the New GDPR training issued in May 2018 – regular reporting on compliance is completed for audit purposes

How can I access the training?

– The link attached will take you to the training:

The module provides guidance on records management, information security, Data Protection and Freedom of Information; it aims to ensure that you:
• Understand legal requirements surrounding Data Protection and Freedom of Information
• Understand the principles of effective records management and information security
• Understand how to apply the training into your daily work
• Understand Freedom of Information legislation and how to respond to requests
• Understand the principles and practicalities involved in Data Protection

As a guide, the module takes approximately 1 hour to complete, however you will have the option to bookmark your progress and complete the course in chunks if you would prefer.