Data Protection

Code of practice on current Data Protection legislation and how it is implemented at the University of Leicester.

Data ProtectionThe University is a complex organisation that is highly dependent on the processing of personal data for a broad range of its activities. It has a clear obligation to the individuals about whom it holds data to process the information in a manner that is compliant not only with the provisions but also the spirit of Data Protection legislation.

Data Protection Code of Practice and Information Security Policy


Data Protection Principles

The Data Protection Code of Practice contains a general statement of the data protection policy adopted by the University and provides guidance on how the requirements of Data Protection legislation can be met.

The University's Information Security Policy is designed to ensure that all information and information systems, on which the University depends, are adequately protected.

It is expected that all members of staff will comply with these documents.


Anyone processing personal information is obliged to comply with a set of Data Protection Principles.

GDPR and the Data Protection Act 2018


Personal Data Breaches

Basic guidance on how you should handle personal data under the GDPR and the Data Protection Act 2018.


Under new Data Protection legislation the University has a requirement to notify the regulator within 72 hours of any personal data breach which will result in a risk to the rights and freedoms of natural persons.

If you have become aware of a data breach or incident please call 0116 252 5800

Use of Student Data


Accessing information held by the University

Privacy Notices relating to the use of Applicant, Student, and Alumni Data can be found via the following link. 


Under the Data Protection legislation individuals have rights of access to information held by the University.

Find out more

Information Commissioner's Office


Contact IAS

Further Information about the Data Protection Act can be obtained from:


For information about Data Protection or to request information.

Share this page:

Request Information

To make a Data Subject Access Request, or a Freedom of Information Request, please contact IAS directly.

Data Protection Officer

The Data Protection Officer is:

Elisabeth Taoudi, Data Protection Officer and In-House Commercial Lawyer, University of Leicester, University Road, Leicester, LE1 7RH

0116 229 7640