Gower College Swansea needs to collect, process, keep and use certain types of information about people with whom it deals in order to carry out its day to day functions. These people include current, past and prospective students, customers, staff, partners, Corporation members, suppliers of goods and others. This personal information, whether on paper, on a computer, or recorded on other material, must be used fairly and processed in accordance with the General Data Protection Regulation (GDPR). The data must also not be disclosed to any other person unlawfully.
All staff and students should be aware:-
- that all personal data collected, held, and processed (including Internet software) whether in manual, digital, electronic or any other format is subject to the GDPR
- of the circumstances under which they may or may not legitimately access, process and disclose personal data
Note – individuals, including staff and students, in relation to whom the College holds information are referred to as data subjects
The College is a corporate body and the Board of Governors is therefore ultimately responsible for compliance with the GDPR. The day to day operation of this policy is undertaken by the Data Protection Officer and their contact email address firstname.lastname@example.org