Regulatory Developments

Last updated: 
4 months 2 weeks ago
Blog Manager
Log in to request membershipHide blog description
One of Jisc’s activities is to monitor and, where possible, influence regulatory developments that affect us and our customer universities, colleges and schools as operators of large computer networks. Since Janet and its customer networks are classified by Ofcom as private networks, postings here are likely to concentrate on the regulation of those networks. Postings here are, to the best of our knowledge, accurate on the date they are made, but may well become out of date or unreliable at unpredictable times thereafter. Before taking action that may have legal consequences, you should talk to your own lawyers. NEW: To help navigate the many posts on the General Data Protection Regulation, I've classified them as most relevant to developing a GDPR compliance process, GDPR's effect on specific topics, or how the GDPR is being developed. Or you can just use my free GDPR project plan.

Group administrators:

Recent members:

Wellbeing Analytics Code of Practice: Consultation

Well-being CoP full consultation draft v0-95.pdf

[UPDATE: thanks for your feedback. Final text has now gone into the Jisc production process :)]

Jisc has been providing expert, trusted advice on digital technology in the education sector for more than 30 years. We know that technology and data have the ability to transform the student experience. But, as a membership organisation owned by research and educational institutions, we must ensure our advice and guidance are responsible and safe for students, staff and institutions. With universities and colleges concerned about wellbeing and mental health problems among students and staff, and suggestions that increased use of data might help them provide better support, we were delighted to have the opportunity of participating in the ICO sandbox to test our ideas of how this might be done without increasing the risks to students and staff.

In the event, our discussions with ICO colleagues have been even more productive than we had hoped. We have explored possible legal bases for processing personal data to support wellbeing and mental health services and expanded our draft Code of Practice to include all relevant safeguards. In addition, with the ICO’s encouragement and support, we have developed new tools for educational institutions to conduct Data Protection Impact Assessments (DPIAs) for their planned activities and to assess purpose compatibility when considering new data sources. These tools should help institutions meet their accountability duty in the General Data Protection Regulation (GDPR).

Having completed our sandbox engagement we are now conducting a public consultation on the Code of Practice, including its Data Protection Impact Assessment and Purpose Compatibility Assessment Annexes.

Any feedback is welcome, to Andrew.Cormack@jisc.ac.uk by the end of April, please.

  • Twitter logo
  • LinkedIn logo
  • Google+ logo
  • Reddit logo
  • StumbleUpon logo
Data Protection Regulation
GDPRtopics
Learning Analytics
wellbeing