Right to erasure
This right is also known as the ‘right to be forgotten’ but it is not an absolute right and only applies in certain circumstances. Further information is available in our policies.
Right to restrict processing
In certain circumstances, such as when an individual considers their data to be inaccurate or they object to the basis for processing, they can ask that any processing is restricted whilst the data is verified or the matter is formally considered.
Right to data portability
This right allows individuals to receive their personal data in a structured, commonly used and machine readable format and they can request the University transmits the data directly to another controller. This right is limited and only applies when the personal data is held for the performance of a contract or by consent and when the individual has provided that data to the controller. The right does not apply to paper files – the processing has to be by automated means.
Right to object
This right allows individuals to object to the processing of their personal data in certain circumstances. Where personal data is used for direct marketing, this is an absolute right. But in other cases, it depends on the purpose for processing and the lawful basis that the information is held under. Further information can be found on the ICO website.