Data Protection & Freedom of Information Office

General Data Protection Regulation

The General Data Protection Regulation (GDPR) is concerned with information (more specifically, personal data) about individuals and how that information is held and processed. GDPR sets out the requirements for handling personal data and gives individuals a number of rights, including access to information held on them by an organisation.

The University of Glasgow is committed to the principles underlying the General Data Protection Regulation and protecting the rights and freedoms of individuals with respect to the processing of their personal data. The University uses personal data for management, administration, and research and the processing of the personal data must conform to the University’s Data Protection Policy and the University’s Notification to the Information Commissioner.

The Information Commissioner is responsible for enforcing GDPR. 

For more information see A-Z Topics webpage.