School of Mathematics & Statistics

From May 2018 the University along with all other organisations that store and manage personal data, e.g. staff and student data, must comply with the new and much stricter laws of data protection : GDPR (General Data Protection Regulation).

• Legislation on how we process and handle confidential/personal/sensitive data.
• Personal data, a complex category of information, broadly means a piece of information that can be used to identify a person. This can be a name, address, IP address, student grades.
• Applies from 25th May 2018.
• Organisations in breach of GDPR can be fined up to 4% of annual turnover or €20 million.
• What should we be doing now?
  • Be mindful of what data is stored on portable equipment such as USB keys or laptops.
  • Mobile devices should be encrypted (laptop hard drives).
  • USB keys containing confidential should be encrypted.
  • Contact School IT Support staff for further information and advice.
• Useful links:
  • https://www.gla.ac.uk/myglasgow/it/informationsecurity/confidentialdata/
  • https://www.gla.ac.uk/media/media_513733_en.pptx
  • http://www.itpro.co.uk/it-legislation/27814/what-is-gdpr-everything-you-need-to-know-8
  • https://www.gla.ac.uk/media/media_513738_en.pptx

First published: 19 December 2017