data protection aims to protect an individual’s right to privacy in regard to the processing of their personal data by those who control it.
in may 2018 new eu legislation came into force, the general data protection regulations (gdpr), applying to all data relating to and descriptive of, living individuals defined in the regulations as 'personal data'. individuals are referred to as 'data subjects'.
the gdpr places obligations on dundalk institute of technology and the way it handles personal data. in turn the staff and students of the institute have responsibilities to ensure personal data is processed fairly, lawfully and securely. this means that personal data should only be processed if we have a valid condition of processing (e.g. consent obtained from the data subject, or a contract with them) and we have provided information to the individuals concerned about how and why we are processing their information (i.e. a privacy notice). there are restrictions on what we are allowed to do with personal data such as passing personal information on to third parties, transferring information outside the eu or using it for direct marketing.
in undertaking the business of dkit, we all create, gather, store and process large amounts of data on a variety of data subjects such as on students (both potential, current and former), staff, third parties and members of the public. our use of personal data ranges from cctv footage, financial transactions with commerical customers through to the processing a student's details throughout their journey from application through to graduation.
we are committed to a policy of protecting the rights and freedoms of individuals with respect to the processing of their personal data. as such, dkit has developed a number of policies that must be adhered to in order to comply with gdpr and these are listed on this website under policies and procedures. staff at all levels are supported through regular data protection training and are actively encouraged to attend sessions. the institute is also in the process of introducing elearning gdpr training for all staff and this will be available over the coming months.
the data protection office also operates an open door policy with regard to assisting staff on matters relating to data protection and their application of the various guidelines. guidelines, policies and procedures on data protection for staff are located here.
Privacy Notices for staff & Students
the institute is the data controller of all personal data it holds and must process it subject to the data protection acts noted above and the new general data protection regulation (gdpr) coming into force on 25th may 2018.
the staff and student privacy notices explain how dundalk it collects, uses and shared your personal data and your rights in relation to the personal data that we hold on you. these privacy notices concern our processing of personal data for staff and for past, current and prospective students of the institute.
data protection statement for student registration
the data protection statement for student registration details the information dundalk institute of technology will store about its students and student apprentices, how it will be used and other information about data protection. this data protection statement applies to all students registering for the academic year 2019/2020 and thereafter.