Guidelines for Staff

This page is a summary guide to the most common data protection issues encountered by Trinity staff.

  • If you have to share personal data in the course of performing University functions, make sure you only share the data with colleagues who need to know it.
  • If a parent / guardian of a student contacts you to request their son or daughter's personal data (e.g. exam results, registration details) you should not release that data unless you have the written consent of the student to do so.
  • If you are emailing more than one student at a time, you should always use the "Bcc" option to avoid sharing students' personal data (email address) with other students. Student email lists should not be shared with class reps or student societies. If a class rep wants to email all the students in their class, you could offer to forward the email on their behalf.
  • If you are unsure as to whether a particular set of data should be retained or disposed of, refer to the Records Management Policy and your area's own records retention schedules. The Data Protection Act does not specify timelines for records retention.
  • If a data breach occurs in your area, you should immediately contact the Data Protection Officer. See Procedures for Personal Data Security Breaches for further details.