The University of Kent has to collect and process large quantities of information about its students, employees, processes, finances and more. Much of this information is personal and some of it is sensitive (known as ‘special category data’ under UK GDPR).
The University also shares and releases information for a range of reasons including students requiring information about courses, government agencies requesting details on core activities and journalists reporting on research activity. In addition to the release of general information in response to routine enquiries, the University is also required to deal with requests arising from the exercise of statutory rights, including those of access under the data protection legislation and the Freedom of Information Act 2000.
The legislation places specific obligations on the University on how requests for information should be handled and processed.
Assurance and Data Protection
The University of Kent