Search results
Found 6920 matches for
An internationally recognised centre of excellence for biomedical and clinical research and teaching
Link to another page
University of Oxford homepage
University Information Classification
Official classification of information in the University is straightforward - Confidential, Internal and Public. This link also provides handling guidelines.
Full Listing of University Policies
A full listing of University Policies can be found on the Legal Services web pages
Participant Information Sheet Template for Research under CTRG
If you are undertaking research under the auspices of the CTRG, your Privacy Notice will be incorporated into your Participant Information Sheet.
Data Protection Principles
The University's guidance on the principles of Data Protection
Guidance on writing a Privacy Notice
University guidance on how to write a Privacy Notice - for personal data not covered by the standard University privacy notices
Using Consent as a Lawful Basis for Processing
If you are sending marketing emails (see the guidance on mailing lists), you may, under some circumstances, need to use consent as your lawful basis for processing. The GDPR sets a very high standard for valid consent, which must be specific, informed, freely given and unambiguous.
University Mailing List Guidance
Advice on the action you need to take in relation to mailing lists as a result of the GDPR
Health Research Authority advice on Consent in Research
This link is provided as a very clear outline and contrast of the use of consent under GDPR and the common law duty of confidentiality, and is included here for clarification if things are getting confusing. Please use Research Services Guidance in the first instance.
Standard University Privacy Notices
Privacy Notices for Staff, Students, Alumni etc
How to report a data breach
Please follow the University procedure for reporting a data breach as soon as possible.
University Breach Reporting Procedure
University Guidance on how to identify and report a data breach or security breach
Staff Guidance on Data Protection and Confidentiality
The University's Guidance on Data Protection and Confidentiality
How to handle a subject access request
If you receive a subject access request you should forward it promptly to the Information Compliance Team, as we are required to respond to requests within a statutory timeframe.
Subject Access Request Process
Process for subject access requests - information for staff
University Guidance on Privacy by Design and DPIA
Privacy by design and templates for screening, data protection impact assessments and privacy by design assessments
University Guidance on Privacy Notices
The University's Privacy Notice Toolkit
Photography Toolkit
The University's GDPR toolkit for photography