GDPR Overview

What is GDPR?

The General Data Protection Regulation (GDPR) came into force across the EU on 25th May 2018.  It replaced the previous Irish Data Protection Acts, 1988 and 2003.

It standardises and strengthens the right of all European Citizens to data privacy.  GDPR emphasises transparency, security and accountability for organisations that collect, use, share and store personal data.  At the centre of GDPR is the requirement for organisations to be fully transparent about how they are using and safeguarding personal data, and to be able to demonstrate accountability for their data processing activities.


Why is GDPR Important for UCC?

UCC is an organisation that processes significant amounts of personal data about its students, staff, research participants, and many others. Individuals are increasingly aware of their rights and expect organisations like UCC to protect their personal data.

The GDPR places significant obligations and responsibilities on the University in how it collects, uses and protects personal data. 

The Irish Data Protection Commissioner specified the following 12 steps to achieve compliance with GDPR. These steps have been adopted by UCC in its approach to implementing GDPR.

Office of Corporate and Legal Affairs

Oifig um Ghnóthaí Corparáideacha agus Dlíthiúla

1 st Floor, East Wing, Main Quadrangle,