GDPR - Understanding the rights of individuals

Posted by rmt22 at Mar 22, 2018 03:45 PM |
Do you know how individual’s data subject rights are changing under the General Data Protection Regulation (GDPR)?

It is important for colleagues across the university to be aware about individual rights under the General Data Protection Regulation (GDPR). The University has a responsibility to make individuals aware of their rights and ensure mechanisms are in place to act on these. In order to do this it is important that you are aware of these rights and how you can respond to requests under these rights.

The rights are: right to be informed, right of access, right to rectification, right to erasure/to be forgotten, right to restrict processing, right to data portability, right to object and rights in relation to automated decision making and profiling.

The University will have up to one month to process individual rights requests and unlike previous Data Protection legislation these requests can be made verbally and without incurring a cost to the individual.

If you are a staff member who deals with individuals and their information it is important to know these rights and their applicability to your department or service. It is essential that you act quickly when a request is made mentioning any of these rights.

Colleagues across the University should proactively review processes within their department/service and identify circumstances in which an individual may request to exercise any of these rights. A quick guide on individuals’ rights has been created to support staff in this process. This guide can be found on our GDPR pages.

If you have any specific questions around data subject’s individual rights please contact Information Assurance Services at ias@le.ac.uk

Further information

Everyone can play their part in preparing for the GDPR. Please read our guide on the simple things that everyone can start Doing to help prepare for GDPR on our GDPR pages.

Don’t forget to complete the University’s mandatory e-learning on information security which can be accessed via Blackboard here

GDPR Drop in surgeries are also being run on the following dates, please come along with a question about GDPR:

  • Tuesday 27 March 2-3pm
  • Tuesday 10 April 11am-12noon
  • Wednesday 25 April 11am-12noon
  • Thursday 10 May 11am-12noon
  • Friday 18 May 11am-12noon

(Please note these are short surgeries to ask questions not a formal training course)

 

Share this page: