Cookies on this website
We use cookies to ensure that we give you the best experience on our website. If you click 'Continue' we'll assume that you are happy to receive all cookies and you won't see this message again. Click 'Find out more' for information on how to change your cookie settings.
Skip to main content

Each member state of the EU has a supervisory authority. In the UK, the supervisory authority is the Information Commissioner’s Office (ICO). 

Individuals may also challenge the use of their data themselves.

If there is a breach of the rules, the ICO can fine an organisation up to 4% of its turnover or require changes in its policies and procedures.

Data Protection Officers (DPO) have been appointed to give advice in the collegiate University and to advise on internal compliance with GDPR and the Data Protection Act 2018.

The DPO for the central University is Felicity Burchett, and she heads a team of data privacy specialists, the Information Compliance Team.

https://www.ox.ac.uk/about/organisation/governance/dataprivacy?wssl=1

The team is supported by a network of ‘hub contacts’ who University staff and students can go to for help and advice. You can find out who is your GDPR hub contact here.

https://www1.admin.ox.ac.uk/media/global/wwwadminoxacuk/localsites/councilsecretariat/oxonly/documents/18_02_01_Hub_contacts.pdf

Colleges and subsidiaries also have a DPO.