University of Bath Data Protection Statement
University Data Protection Policy
Ten golden rules for compliance
General Guidelines for
staff & students
Guidelines for staff in SREO
Guidelines for staff in academic depts
Guidelines on academic research
Frequently Asked Questions
University's Data Protection notification
Data Protection Statement of Student Registration
University Records Management Service
Glossary of Data Protection terms
Person, company or organisation who determines the purpose and manner
of the processing of personal data, i.e. the body responsible for the
data (e.g. the University of Bath).
Obtaining, recording or holding (storing) information and carrying
out any operation or set of operations upon it: including adaptation,
alteration, retrieval, consultation, use, disclosure, transfer, erasure
Any living individual who is the subject of personal data.
Data subject access:
The right of an individual to inspect all personal data relating to
him/her held by a data controller. The data controller must produce the
requested information in an intelligible and, unless this is impracticable,
Information relating to a named or otherwise identifiable individual.
This includes any expressions of opinion about the individual and any
indication of the intentions of the data controller or any other person
in respect of the individual.
Sensitive personal data:
Personal data containing information relating to the racial or ethnic
origin, political opinions, religious beliefs, trade union membership,
physical or mental health, sexual life or criminal history of a data subject.