In line with its obligations under the UK General Data Protection Regulations and the Data Protection Act 2018 the University must maintain a Records of Processing Activity.
About the Data Controller
The University of South Wales (USW) as a data controller is registered with the Information Commissioner's Office (Registration Number - Z6472800).
The Data Protection Officer is contactable via the University of South Wales, Pontypridd, CF37 1DL. [email protected].
Why does the University process personal data?
The University processes personal data for the following purposes:
What categories of personal data are processed?
The University processes personal data for the purposes listed above. The University will only process personal data that is required. Types of personal may include:
The University processes personal data about the following categories of individuals:
Periodically personal data may need to be shared with third parties where there is a requirement to do so:
How is information protected when it is sent outside of the EEA?
The University has relationships with institutions and agencies worldwide which make it necessary for data to be transferred outside the EEA.
Periodically the University uses third party processors who are based outside of the EEA and will necessitate an international transfer.
Where transfers are made the University has in place processes to ensure that they are carried out in compliance with data protection laws.
For how long will the University hold personal data?
The University will hold personal data in line with its Retention Schedule
What steps does the University take to keep personal data secure?
The security of information is a priority for the University and various measures are in place to ensure that data is appropriately protected. The University has policies and procedures in place and technical measures to ensure that data is protected
Updated August 2022