Data protection policy

Liverpool John Moores University (LJMU) collects, stores and processes a wide range of data about individuals during the course of its day-to-day business, and the use of personal data is an integral aspect of many of the University’s activities.

Our Data Protection Policy outlines how we comply with the data protection obligations as set out in the Data Protection Act 2018 and the General Data Protection Regulation (GDPR) (together referred to as the “DP Legislation”) and how the University seeks to protect personal information relating to its staff, students, and other stakeholders.

The Policy also aims to ensure that staff, students and those who use or have access to, or custody of personal data held by the University understand and comply with the rules governing the processing of personal information which they may have access to during their period of employment and/or studies.

Processing means the “collection, recording, organisation, structuring, storage, adaptation  or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available … or combination, restriction, erasure or destruction…”

The purpose of the DP Legislation is to protect the rights and privacy of individuals (referred to as ‘Data Subjects’) and to ensure that personal data is processed fairly, lawfully and transparently in compliance with the Data Protection Principles.

The University aims to ensure that all staff are fully aware of their obligations under the DP Legislation and understand how data protection can impact on their day-to-day role.

We are committed to ensuring the security of personal data and have appropriate physical, technical and organisational measures in place.

The University’s Data Protection Officer is available to advise further with regard to any of our data protection policies and can be contacted at: