GDPR and Data Protection Related Policies and Procedures 

Policies & Statements

• UCD Cookie Policy - This policy outlines our policy concerning the use of cookies on ucd.ie
• UCD Data Privacy Statement - This statement provides you with information on how University College Dublin, Dublin, Republic of Ireland (the ‘University’), captures and uses personal data. 
• UCD Data Protection Policy - This policy is a statement of University College Dublin’s (UCD) commitment to protect the rights and privacy of individuals in accordance with the GDPR.
• UCD Exceptional Account Access Policy - This policy sets out how the University responds to exceptional requests outside of standard business practices, to authorise a UCD person or UCD party’s access to “Data”, via a UCD Exceptional Account Access Policy Request Form, held in any University supported IT service or University owned device, whether it is provided directly by a University unit or is managed by a third party on behalf of the University. Please Note: To request a copy of your own personal data held by UCD, you can make the appropriate Data Subject Access Request (DSAR) (see link to procedure below).  
• UCD ODPO General Data Retention Guidance for Personal Data - This guidance document sets out the obligations of University College Dublin (“UCD”) regarding the retention of records. The General Data Protection Regulation (GDPR) requires that UCD only retains personal data when there is a valid legal reason to do so.

Procedures

• UCD Data Subject Access Request Procedure
• UCD Data Incident Procedure