Higher Education institutions share a number of characteristics with colleges, schools and trusts. They hold a great deal of personal data about staff and students including a wide range of special category data. One major difference is the expectation that a university will engage with both other academic institutions (at home and abroad) and with organisations in business and industry.
Data lies at the heart of these interactions and prior to publication much of it is not anonymous. Compared to other settings then members of staff may have large stores of personal data that that the organisation is only aware of at a generic level. The requirement for individual members of staff to understand their responsibilities and manage this personal data appropriately is central to compliance. To fully map it’s use of personal data, a university will have to have registration data for every project running that uses such data creating a very large number of purposes of processing.
GDPR Sentry can support the most complex data protection regimes. The Sentry Compliance management system can be built in a modular fashion to match your organisation and our consultants understand the multilayered ways that personal data is used in Higher Education.