Data Protection

UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018

Girton College is committed to protecting the privacy and personal information that we collect, maintain and process about our College members and associates.

The College has produced the following policy and privacy statements, which describe how information is collected, the lawful basis of processing, use and disclosure, and the retention or destruction of personal data, for the different purposes and activities the College may undertake.

The statements are regularly reviewed and updated whenever necessary to reflect changes in the College’s activities and to ensure its continued accountability.

If you have any queries or concerns relating to your personal data that is held by the College, please contact the College Data Protection Lead.

Data Protection Policy and Privacy Statements

• Data Protection Policy – December 2020 (PDF)
• CCTV Policy - November 2021 (PDF)
• Pre-applicants – statements managed by the Cambridge Admissions Office and Board of Graduate Studies
• Applicants for Employment, College memberships and academic appointments - May 2018 (PDF)
• Current students - May 2023 (PDF)
• Fellows, staff and senior members - May 2018 (PDF)
• Alumni and Supporters - July 2023 (PDF)
• Visitors and guests: general - May 2023 (PDF)
• Visitors and guests: Admissions and Widening Participation – in progress
• Visitors and guests: Archive and Special Collections – in progress
• Girton College Summer Programmes - May 2023 (PDF)
• Event Organisers - May 2023 (PDF)
• Student Societies and Groups – in progress
• Website Users - May 2023 (PDF)

Data Sharing Agreements

The University, Cambridge In America And The Colleges:

• Office of Intercollegiate Services - Personal data sharing agreement - July 2023 (PDF)

Withdrawal of consent

Girton College will only collect, process and store your personal data in accordance with the policies and statements above. 

However, if you wish to withdraw your consent – you may do so at any time by contacting the College Data Protection Lead.

Requesting personal information about yourself

Under the terms of the General Data Protection Regulation (GDPR) you may ask the College for any information it processes about you as an individual. Please note the College will normally have a month from receipt to respond to your request. Valid proof of identity will be required before a request will be processed.

If you wish to make an enquiry about data that relates to yourself, please complete the Subject Access Form, which is also available in hard copy from the College’s Data Protection Lead.

Please see ‘How to complete the Subject Access Request Form‘ for further guidance.

Requests for personal information on behalf of someone

If you wish to make an enquiry about data on behalf of someone, please complete the Subject Access Form, which is also available in hard copy from the College’s Data Protection Lead.  Please note, that written authorisation and valid proof of identity is required from the data subject before a request will be processed.

Please see ‘How to complete the Subject Access Request Form‘ for further guidance.

Contact Information:

College Data Protection Lead

Girton College, Cambridge, CB3 0JG
T: +44 (0)1223 338987
E: data.protection@girton.cam.ac.uk 

For Complaints and Concerns:

Data Protection Officer Office of Intercollegiate Services

12b King’s Parade, Cambridge, CB2 1S
T:+44 (0)1223 768745
E: college.dpo@ois.cam.ac.uk

Website: Information regarding the Statutory Data Protection Officer