Protection of personal data
Every day, SDU processes information about a large number of students. This means that SDU is processing your information if you are registered as a student at SDU. Therefore, the university complies with the legislation about general data protection to ensure that your personal data are not misused and that you know who are treating your information and why.
Data protection officer
SDU employs a data protection officer (DPO) who can advise you as a student about legislation and rules for data protection. You can contact SDU’s data protection officer, Simon Kamber, at dpo@sdu.dk , if you have any questions concerning SDU’s handling of your personal information.
Privacy policy
SDU processes and registers information about you if you are registered as a student at SDU.
Applied sections
According to the general data protection regulation (GDPR) and the Danish data protection law, SDU, as data controller, must inform you about your rights concerning the processing of your personal information.
SDU registers personal data in accordance with the general data protection regulation, specifically paragraphs 6, 9 and 10. Personal data used in research projects are registered under the authority of the Danish data protection law § 10.
Processing and retention
SDU’s data processing is designed to be private and confidential. Your personal data are processed and retained within the university’s administrative systems. When the information is no longer needed for its original purpose, it will either be deleted or stored within SDU’s recordkeeping systems.
Disclosure of personal information
Your personal data will not be disclosed without you being explicitly informed, unless the university is required to disclose the information to other public authorities.
Right of access
Generally, as a registered individual you can at any time contact SDU to gain a copy of your personal information retained in SDU systems. Exempt from this are personal data included in research projects and stored by SDU.
Rectification of information
If you as a registered individual consider the registered information to be incorrect, you can contact the university for rectification of the information. This means that the university either rectifies the information or takes note that the information is incorrect and instead registers the correct information.
As a registered individual you are entitled to having the data controller disregard the information until it has been settled, what information is correct. As a registered individual you also have the right to the university not utilizing the information if it is no longer needed.
Objection
As a registered individual, you have the right to object to the processing of your personal data unless the university is processing said data as part of a research project.
Consent
If SDU has obtained consent from you to process your data, you can at any time withdraw your consent. Consequently, the university is not entitled to continue the processing of your data after your consent has been withdrawn.
Filing a complaint with the Danish Data Protection Agency
As a registered individual, you can file a complaint concerning the processing of your data with the Danish Data Protection Agency dt@datatilsynet.dk.
Processing personal data as a student
As a student you are allowed to process personal data in connection with your studies at SDU. In this context, you are considered a private data controller, and thus it is your own responsibility to handle the data in accordance with regulations.
For employees
If you need to know more about how you as a lecturer, researcher or administrative staff must process personal data, please see SDU’s universe with user-oriented information about data protection and information security here.