About Data Protection at The UWI

The UWI's commitment to data protection

At The UWI, we understand the importance of protecting the data we collect - especially the personal data of our students, staff, and alumni. Our DATA PROTECTION POLICY (DPP) outlines how we handle personal data at every stage, ensuring that individuals have the right to access and manage their information.

We're committed to keeping your data safe and secure, just as leading institutions around the world do. As a data controller, The UWI is committed to:

Complying with the data protection legislation and policies in the countries in which The UWI operates as well as global data protection best practices

1

Protecting the privacy rights of all its students, staff, and alumni

2

Ensuring that the personal data in The UWI’s possession are kept safe and secure

3

Supporting staff of The UWI in meeting their legal responsibilities*

4

Mandating that third parties processing data on behalf of the University observe its data protection policy

5

Respect the data protection rights of individuals

6

Provide awareness training and support for staff who process Personal Data

7


* Legal responsibilities are summarised in Section 1.7 of The UWI Data Protection Policy.

Data protection definitions

Explore the following definitions for a better understanding of some of the key terms and concepts in data protection.

Data Protection

Refers to how the privacy rights of individuals are safe guarded in relation to the processing of their personal data including the sharing of personal data held by The UWI.

Personal Data

Relating to a living individual, or to an individual who has been deceased for less than thirty years, who is, or can be identified, either from the data or from the data in conjunction with other information, which is in, or is likely to come into the possession of the Data Controller. It includes information in the form of photographs, audio and video recordings, and text messages.

Data Controller

A person who (either alone or with others) controls the contents and use of personal data. The UWI as a legal person is a Data Controller.

Data Subject

An individual who is the subject of personal data.

Sensitive Personal Data

Refers to specific categories of personal data. These are defined as data relating to a person’s racial origin, political opinions or religious or other beliefs, physical or mental health, sexual life, criminal convictions or the alleged commission of an offence, and trade union membership.

The UWI Data Protection Timeline

  • 2020

    The UWI Data Protection Policy was approved by University Finance and General Purposes Committee (F&GPC)

  • 2022

    Data Protection Procedures created to assist staff comply with the Data Protection Policy Other Key outputs of the Committees (Legal, ICT, Campus Records, Human Resource, Registry Operations)

  • Anguilla
  • Antigua & Barbuda
  • The Bahamas
  • Barbados
  • Belize
  • Bermuda
  • British Virgin Islands
  • Cayman Islands
  • Dominica
  • Grenada
  • Jamaica
  • Montserrat
  • St Kitts and Nevis
  • St Lucia
  • St Vincent and the Grenadines
  • Trinidad and Tobago
  • Turks and Caicos