Steps You Should Take for GDPR Compliance

February 23, 2018

Social Media Links
Overview of steps for GDPR
See the steps below for full text and a full-resolution handout of the GDPR Compliance Steps.

Do you collect, store or transmit any personal data in your role with Webster? Faculty, staff and students at all Webster University campuses should be aware of how GDPR affects business processes and the handling of personal data.

The General Data Protection Regulations (GDPR) will go in effect on May 25, 2018. The regulation is the most far-reaching change to data protection in a generation. Review these steps to compliance provided by the GDPR project team.

Discuss them with your colleagues and supervisors. Make sure you are prepared for the compliance deadline of May 25.

Still unfamiliar with GDPR? See this Q&A for an overview.

For further information and continuing updates, visit www.webster.edu/gdpr.

GDPR Compliance Steps

  1. Information You Hold — Document what personal data you hold, where it came from and who you share it with. GDPR applies to anyone involved in processing data for citizens or residents in the EU, regardless of whether the employee/student is located in the EU.
  2. Communicating Privacy Information — Update current student/employee privacy notice and complete updates in time for May 25, 2018 GDPR Implementation.
  3. Individuals’ Rights — Check procedures to ensure they cover all the rights EU residents and citizens have under GDPR. These include how you edit, electronically transport, securely store, correct, retain and delete their personal data; and in a commonly used format.
  4. Subject Access Requests — Update procedures and protocols for handling requests.
  5. Lawful Basis for Processing Personal Data — Identify the lawful basis for your processing activity in the GDPR, document it and update the privacy notice to explain it.
  6. Consent — Request consent at initial recruitment and enrollment process for citizens and residents to meet the GDPR standard.
  7. Children — Put systems in place to verify individuals’ ages and to obtain parental or guardian consent for any data processing activity (e.g. Community Music School, SPICE activities, summer camps, etc.)
  8. Data Breaches — Ensure the appropriate procedures are in place to detect, report and investigate a personal data breach.
  9. Questions? Email your questions to GDPR@webster.edu.
Social Media Links

Related News

News

In the News –Keane, Rhiney, Hall, Curtis, Brown-Kennerly, Johnson, Hunt Gallery, Chess, Assner-Alvey, Roberts, Guffey and Bruce

April 22, 2025

This regular column links to the most significant stories about Webster University or that quote Webster faculty and staff members.
News

Faculty and Staff Highlights: Assner-Alvey, Belo, Chase, Chaudhuri, Christeson, Corrigan, Hayes, Martin, Pichaske, Turaeva

April 14, 2025

Webster University faculty and staff highlights offer a roundup of recent Webster faculty and staff activity and achievements.
News

Webster’s Nursing Program Named Among the Best for the Fourth Consecutive Year

April 8, 2025

Webster University’s Master of Science in Nursing (MSN) program was named one of the top graduate nursing programs in the nation for the fourth...
All News