Accessibility notes

Page content

GDPR Interim Statement

European Union General Data Protection Regulation (GDPR)

The GDPR goes into effect May 25, 2018. The GDPR was written to expand personal privacy rights for European Union (EU) residents. The rule:

  • Applies to all organizations that possess personal data provided by people while they are residing, permanently or temporarily, in the EU.
  • Defines data broadly: any data that can be used to identify an individual such as genetic, mental, cultural, economic, technological or social information.
  • Requires valid consent to collect personal data: consent must be informed, unambiguous, freely given.
  • Allows individuals the right to be forgotten.

Ohio State GDPR Program

Ohio State formed a working group to develop a GDPR compliance program. The group includes representatives from, University Compliance and Integrity, Office of Academic Affairs, Enterprise Security, the Wexner Medical Center, the Office of Research, the Office of Legal Affairs, and other relevant units. The group has:

  • Created a plan to meet GDPR requirements
  • Created governance around GDPR data management
  • Began implementation of a GDPR program using pilot offices with highest exposure to EU residents

More Information

For general information, review the European Commission’s EU Data Protection website.

If you are an EU resident or if you are calling from the EU in regards to GDPR, call the IT Service Desk at +1 614 688 4357 (HELP) or email itservicedesk@osu.edu. Please mention GDPR in your call or online request.