Information governance

Privacy legislation gives people the right to know what information is held about them, and requires the University to ensure that personal information relating to living individuals is handled properly, held in confidence and is protected from inappropriate disclosure to third parties.

What is information governance?

Information governance is the management of information. It balances the use and security of information and helps with legal compliance and operational transparency. It encompasses record management, information security/protection, compliance, data governance, risk management, retention/archiving and privacy. Here, at the University of Surrey, we understand the benefits of a comprehensive, well-run information governance program, please read our Data Management Strategy.

We hold and process information about many different types of people such as its current, past or prospective employees, applicants, students and alumni. We also process personal information for a variety of reasons. We may also be required by law to collect and use certain types of personal information to comply with statutory requirements.