The University of South Wales (CCSO) is the data controller and is committed to protecting the rights of individuals in line with the Data Protection Act 1998 (DPA) and the new General Data Protection Regulation (GDPR).
The University will collect the following personal information – name, contact details, date of birth, work details.
When individuals enrol on our courses the University has to collect, store, use and otherwise process personal data for any purposes connected with the course delivery, health and safety and for other reasons deemed necessary for the performance of the contract with the institution.
Further use of personal data would also include the provision of support services, to monitor equal opportunities, to carry out research and statistical analysis, to provide operational information, to promote our services and to ensure the safety and security of our delegates/clients.
Where an individual has enrolled or has made an enquiry the University processes the information as it is necessary for the performance of a contract.
Where an individual has indicated that they would like to receive further information from the University, this information is processed with their consent.
All the personal data we hold will be processed within the European Economic Area.
Personal data is only received by members of staff within the University in order to provide the information requested.
In certain circumstances, the University may use the services of a third party to undertake a task on its behalf. Where this is necessary, the information will only be provided for the purposes of carrying out a task and will be undertaken under contract.
Personal data will be stored in line with our retention schedule.
Where the University is relying on consent to process personal data, individuals have the right to withdraw their consent and can do so by contacting firstname.lastname@example.org.
Individuals have a right to access their own personal information, to object to the processing of their personal information, to rectify, to erase, to restrict and to port personal information.
Further information can be found in relation to individual rights on the University Data Protection web pages.
Any requests or objections should be made in writing to the University Data Protection Officer:-
University Secretary’s Office,
University of South Wales,
Email: [email protected].ac.uk
Data Protection legislation requires the University to keep information secure. This means that confidentiality will be respected, and all appropriate measures will be taken to prevent unauthorised access and disclosure. Only members of staff who need access to relevant information will be authorised to do so. Information held in electronic form will be subject to password and other security restrictions, while paper files will be stored in secure areas with controlled access.
Where individuals are unhappy with the way in which their personal data has been processed, they may in the first instance contact the University Data Protection Officer using the contact details above.
In the event that any complaint is not resolved then the issue may be taken to the Information Commissioner for a decision. The Information Commissioner can be contacted at: –
Information Commissioner’s Office,