The new European privacy legislation has been in place since 25 May 2016: the General Data Protection Regulation (GDPR). This also has consequences for higher education and research. Institutions have to respond well on time and SURF helps them do this.
Privacy model policy
Most institutions either have implicit policies that contain rules for careful handling of personal data, or they have an information security policy that includes elements of privacy. This working group wants to create a general model policy that only focuses on the privacy aspects of policy.
Adapting policies to GDPR
The activities in this work package will provide institutions with tools to incorporate the model policy into their own policy, or to optimise their policy based on the requirements set by the 'Wbp' and the GDPR.
Formulating a privacy model policy
Deliverables / working documents
- Model Policy Processing Personal data version 2018 (pdf, in Dutch)
Besides these working documents are also available:
- Programme memorandum with a brief introduction to the GDPR and a summary of the GDPR (pdf, in Dutch)
- List of definitions around the GDPR (pdf, in Dutch)