The General Data Protection Regulation (GDPR) came into force from 25 May 2018. It states that organisations need to be lawful, fair and transparent when controlling or processing your personal data.
Some aspects of the new legislation do not apply to research, for example, data can be stored for research for long periods of time and there are other exemptions to some rights in a research context where there are safeguards in place.
Swansea University has detailed guidance available on the GDPR and whom to contact, should you wish to complain about how your data has been processed.
