Toggle Menu Toggle Search
We are now part of City St George's, University of London. This website contains information relating to our Tooting campus. Please visit our new website to learn more about what we offer across all our campuses.

City St George’s, University of London (CSG) needs to keep certain personal data, for example about our staff and students, to fulfil our purpose and to meet our legal obligations to funding bodies and government.

The university's data processing activities must adhere to UK data protection legislation. To comply with the law, information must be collected and used fairly, stored safely and not disclosed to any other person unlawfully.

Please refer to the relevant page(s) in this section for information on various aspects of data protection.

Data protection queries

If you are unable to find the information you're looking for here, or you need further help or advice with a data protection issue, please email your query to data protection.

Data breach reporting

If you need to report a data breach involving University personal data, please complete the data incident reporting form as soon as possible and email it to dataprotection@sgul.ac.uk.

Further information on the reporting process can be found under the 'Data incident reporting' section of the Information and Technical Security webpage.

Data Protection Officers

CSG DPO - Emma White - dataprotection@city.ac.uk

SGUL DPO - Claire Morrissey  - dataprotection@sgul.ac.uk.

Note: SGUL is part of City St George's, University of London

Find out more

More detailed guidance can be found on the Information Commissioner's Office website.

The full text of the Data Protection Act 2018 is available via the UK Legislation website managed by the National Archives.

Data Protection Policy

Learn more about the university's data protection policy.

Data Protection Guidance

Guidelines have been drawn up to provide St George's members with a basic overview of the Data Protection Act principles.

Data Protection Notification

St George's data protection notification document contains details of the university's data protection register entry.

Data Protection Scenarios

On this page you will find some examples of work-related situations and how the data protection principles apply – from sharing student information with their family to handling data as a researcher.

Data Protection and Research

All staff, including research staff, must adhere to university policy on the handling of personal data in their day-to-day work.

Data Protection Training

The university has an obligation to ensure that its staff understand the basics of data protection, especially in the context of their own duties and responsibilities.

Data Protection Glossary

Definitions of some of the key terms and phrases associated with data protection, from consent and fair processing to subject access request.

Data Protection FAQs

Here you will find answers to some common questions about data protection, from what is meant by sensitive personal data to dealing with subject access requests.

Freedom of Information Act

The Freedom of Information Act gives people the right to request information from St George’s about the business of the institution.

GDPR FAQs

Frequently asked questions from staff and students about the new EU General Data Protection Regulation.

Requests for Personal Information

Under the Data Protection Act an individual is entitled to have access to their personal information.

Privacy Notice

St George’s needs to keep certain personal data about staff and students to fulfil our purpose and to meet legal obligations. Find out more.

 

Find a profileSearch by A-Z