We're a membership organisation which means at our heart is our students and the information process to make your University experience incredible. We also employ staff, work with suppliers and have customers for our commercial services so the information on this page is for those people too.
The way we manage and process your data is governed by the Data Protection Act 1998 and the EU General Data Protection Regulations and these web pages aim to explain how we manage your information inline with the Act and what this means for you. We've been really open and transparent on these pages to help you be fully informed and understand your rights - you can see: how we access your data; how we assess our processing activities; how we gain consent and how you can change your preferences; the training any data processors go through; who else processes data about you; and our policies for processing data.
All Guild staff receive role-specific training in data protection and undertake mandatory Information Security training.
Student society committee members receive training relating to the use of their societies' data.
|Students||(updated 14th September 2018)|
|Student Support Services||(updated 27th August 2018)|
|Employees||(updated 25th May 2018)|
|Job Candidates||(updated 25th May 2018)|
|Consumers||(updated 25th May 2018)|
|Suppliers, Contractors & Clients||(updated 25th May 2018)|
|Cookies||(updated 25th May 2018)|
The Guild has a single point of contact for all data-related queries: firstname.lastname@example.org
The Information Commissioner provides good practice guidance and interpretation of the law for data controllers and advice to the public on how to access personal data.
The website of the ICO is www.ico.org.uk
The Students' Union is not a publicly funded body so not subject to Freedom of Information, requests however every individual has a right to control the data we hold on them. If you wish to make a request for your data you should complete the below Subject Access Request form providing the required information, copies of proof of identity (please do not send original documents as we cannot be held responsible for any loss of these) and details of the information desired.
These may be sent by email to email@example.com or by post to
The Data Protection Coordinator,
Liverpool Guild of Students,
160 Mount Pleasant,
Please note that while we may accept requests by email establishing your identity may require documentation to be posted.
The GDPR provides you with a right to erase all or part of any data/information we hold about you or object to, and restrict, the processing of any data/information we hold about you (also known as the right to be forgotten); to rectify any data/information we hold about you; or to authorise someone else to make these requests your behalf. You will also need to provide proof of your identity. Your request will be processed within 30 calendar days upon receipt of the adequate information to process your request and proof of identity.
The Guild will not unreasonably prevent erasure, objection, restriction or rectification of data however we require an appropriate reason to make such amendments. Please ensure that you provide sufficient reasoning when making your request. There may be cases where we must retain some or all of your data when you make these requests in which case we will note your request and comments in the appropriate record.
Erasure of data may result in restrictions on the use of the Guild's services as we are required to process certain data to deliver those services.
Complete erasure of all data will result in revocation of Guild Membership; it may also be necessary to retain details of your Student ID number and University of Liverpool username to ensure the Guild does not process any data associated with these records.
The Union and our social enterprises carefully curate marketing and communications that might be relevant to you. Sometimes we need to send essential information where we believe there is a legitimate interest in you receiving this.
We always provide a way to opt out in our communications without affecting your membership and we will never sell your data to third parties.
The University of Liverpool operate their own data protection policy and procedures, further details on these can be found on their website.
The CCTV system in the Guild building is operated by the University of Liverpool.