The University implements technical and organisational measures to protect personal data. These measures include appropriate use of anonymisation, pseudonymisation and redaction.

• Anonymisation means de-personalising data so that it no longer relates to an identifiable living natural person.
• Pseudonymisation means the processing of personal data in such a way that the data can no longer be attributed to a specific data subject without the use of additional information, as long as such additional information is kept separately and subject to technical and organisational measures to ensure non-attribution to an identified or identifiable individual.
• Redaction means the permanent deletion of information from a document.

The University's information security specialists in the Information and Digital Group are available to provide advice on the use of these measures.

The Information Commissioner's Office has published an Anonymisation Code of PracticeLink opens in a new window and a Guide to Disclosing Information SafelyLink opens in a new window. The National Archives has published a Redaction ToolkitLink opens in a new window.