Privacy and data protection
We are all responsible for data protection. To keep (personal) data as secure as possible, the university has established an information security policy.
The information security policy (Dutch only) sets out how the university supports you so you can work in a privacy-proof way. This policy aims to define the appropriate amount of protective measures to safeguard our information. However, such a policy document is never able to capture all the nuances of our daily work. At times it will be necessary to take additional measures or it will be undesirable to implement all measures to the full extent of the policy.
If an exception to the security policy is needed a request can be made by downloading the exception request form and sending it, filled out, to CISO@bb.leidenuniv.nl. If you wish to brainstorm on these measures before you fill out the form, contact the information manager of your faculty.
Tips for working securely online
As a university employee, you probably work with personal data. How can you make sure this information doesn’t fall into unauthorised hands?
Know when you’re working with personal data
As a university employee, you probably work with personal data. That’s not just names and telephone numbers – it can also include things like cookies. How can you make sure you’re working in a privacy-proof way?
General Data Protection Regulation (GDPR)
On 25 May 2018, the General Data Protection Regulation (GDPR) will come into force. Whenever you work with personal data, you must record what happens to this data.
The Public Records Act and the Public Records Provision contain rules for recording information in formats such as (digitised) documents, information systems and websites.
Do you have a question about privacy?
If you need more information about privacy and data protection, please contact the privacy officers (POs).Ask your question