Skip to main content

General Data Protection Regulation (GDPR)

The University provides guidance on the General Data Protection Regulation (GDPR) requirements including links to the Information Protection Policy, FAQs and Top Tips. Essential, mandatory training for all staff will be completed as part of the induction process for new starters.

It is a requirement for all initiatives to complete a screening checklist to evaluate if it is necessary to complete a full Data Protection Impact Assessment (DPIA) to identify and minimise the data protection risks. A DPIA is required for certain types of processing, in particular personal data.

The DPIA will:

  • Describe the nature, scope, context and purposes of the processing;
  • Assess necessity, proportionality and compliance measures;
  • Identify and assess risks to individuals, and;
  • Identify any additional measures to mitigate those risks.
© ICO GDPR guidance: Data Protection Impact Assessment (DPIAs)

The Business Change PMO can support Project Managers to understand and complete this document.

For more information:

Click the DOWNLOAD button to access the DPIA template from Secretariat:

DOWNLOAD

 

Click the DOWNLOAD button to access the DPIA Process:

DOWNLOAD

 

Click the DOWNLOAD button to access the DPIA Checklist Additional Guidance:

DOWNLOAD

 

Click the DOWNLOAD button to access the DPIA ICO Checklist:

DOWNLOAD

 

Click the DOWNLOAD button to access the DPIA FAQs:

DOWNLOAD