The University of Brighton needs to collect and process personal data in order to provide services to students, manage its operations effectively, and meet legal requirements.
Personal data is information that relates to an identifiable individual. It can also include ‘special categories of data’, which is information about your racial or ethic origin, religious or other beliefs, physical or mental health, the processing of which is subject to strict requirements. Similarly information about criminal convictions and offences is also subject to strict requirements.
The privacy notices below set out how we use your personal data.
The Data Controller is the University of Brighton, Mithras House, Lewes Road.
We are registered with the Information Commissioners Office, number Z5395727
If you would like information about how the university uses your personal data please contact firstname.lastname@example.org, 01273 642010.
Data Protection Officer
The Data Protection Officer is responsible for advising the university on compliance with data protection legislation and monitoring its performance against it.
If you have any concerns regarding the way in which the university is processing your personal data, please contact Rachel Page, Head of Data Compliance and Records Management, email@example.com, 01273 642010.
How does the university protect data?
The university takes the security of your data seriously. It has internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by our employees in the proper performance of their duties.
Data subject's rights: access, rectification, erasure, restriction of processing, objection to processing, right to data portability
As a data subject, you have a number of rights. You can:
- access and obtain a copy of your data via a subject access request
- require the university to change incorrect or incomplete data
- require the university to delete or stop processing your data, for example where the data is no longer necessary for the purposes of processing
- object to the processing of your data, in certain circumstances, for example, where the university is relying on its legitimate interests as the legal ground for processing; or for direct marketing purposes
- ask the university to stop processing data for a period if data is inaccurate or there is a dispute about whether or not your interests override the university's legitimate grounds for processing data
- withdraw your consent at any time, where we have requested and obtained your consent
- where our lawful basis is consent or performance of a contract we will allow portability of your data.
If you would like to exercise any of these rights – see our Requesting information page, or contact the data compliance team at 01273 642010, firstname.lastname@example.org.
The right to complain to the ICO
If you are unsatisfied with the way the university has processed your personal data, or have any questions or concerns about your data please email@example.com.
If we are not able to resolve the issue to your satisfaction, you have the right to apply to the Information Commissioner’s Office (ICO).