Data protection is a set of good practice rules for handling information about people.

The rules are set out in a range of UK and EU legislation, statutory codes of practice, regulatory guidance and case law. The law evolved significantly in 2018 with implementation of new regulations at both European and UK level. See the GDPR page for more information.

The University Data Protection policy is available here

Information security is a key part of protecting personal data. Guidance on University information security policies and practices is available here

Guidance on other aspects of data protection is provided on these pages.

Specialist terms used in data protection legislation and in these guidance pages are defined in the Glossary