There is action you and your teams can take now to assist the University with its preparedness for the GDPR. Please familiarise yourself with the GDPR Key Terms and principles and raise awareness of the forthcoming change within your team. In addition, please visit the Information Security webpages and familiarise yourself with the content, including:
- The Information Security Framework, particularly the Information Classification and Handling procedure, to ensure the type of information you have is handled correctly.
- The University’s Record Management Policy and accompanying Records Retention Schedule, to ensure you are not retaining information for any longer than is required.
- The Information Security Essentials online training – please complete this course if you have not already done so, or take it again as a refresher.
If on reviewing the Information Security framework you identify any potential issues or improvements that could be made within your own or your team's processes, then you should work with the relevant colleagues to identify and implement the actions required to ensure you are fully complying with these policies.
This page will be regularly updated with useful information on what can and needs to be done to help prepare for the GDPR. In the meantime, if you have any further questions, please contact firstname.lastname@example.org