As discussed in the Registrar’s message posted on 25 April 2018 on Personal Data Protection (https://uis.hku.hk/web/gsabc/Bi-annual-Reminder-Notice.pdf), the General Data Protection Regulation ("GDPR") is a regulation of the European Union ("EU") regulating the processing of personal data. Because of its extraterritorial effect, it may affect some offices/work units of the University.
In addition to the University’s current approach to and measures of handling the issues in relation to the GDPR under the Information Security and Data Management Policy (https://isdm.hku.hk/) (in particular the principle of the 3 lines of defence), the University’s internal GDPR Website has been launched on 25 October 2018. It can be accessed by the following:
The GDPR Website provides key information and guidance to offices/work units of the University in regard to the GDPR of the EU, in particular the major issues and compliance requirements if they apply to the operations and activities of the relevant offices/work units.
If you have any questions on the GDPR Website, please contact me of Information Technology Services.
Data and Security Team
Tel: 3917 5952