Assessment privacy statement

We collect information about you when

• you submit your work for assessment

The information you provide will only be shared with colleagues who are directly involved in handling your enquiry or request.
 

Personal information collected includes:

• name
• student ID
• the content of you submission (including any personal information that it may contain)
• information about your submission, such as date/time, file name

Your personal information will be used to:

• conducting assessments – marking your work in line with programme requirements
• check submitted work for originality and academic integrity
• help us provide relevant feedback to you

We process your personal data for the following reason

• public task, the processing is necessary for performing a task carried out in the public interest or in the exercise of official authority.

We may share your information with the following organisations:

• our software provider for our virtual learning environment
• our software provider for checking originality
• our software provider who supports the provision of assessment feedback

The personal information we hold will be processed with appropriate security and used in accordance with the Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR).  Your information may be held outside of the UK.  Where this is the case, we ensure that appropriate measures are in place to protect your data.

We will retain this information only for as long as necessary.  We may aggregate and anonymise data for wider internal management reporting or research purposes. Personal data will be kept in line with the university’s retention schedule.

Personal information will not be disclosed to external organisations other than those acting on the instructions of the University.  Where this is the case, a written contract will be put in place between the University and the third party setting out appropriate data protection obligations.

We use several commercial companies and partners to either store personal information or to manage it on our behalf. Where we have these arrangements, we ensure that there is a contract or data sharing agreement is in place to ensure that the requirements of data protection legislation are met.

Sometimes we have a legal duty to disclose personal information.  We may share your information:

• for the detection and prevention of crime and fraudulent activity
• if there are serious risks to the public, our staff or to other professionals
• to protect a child
• to protect adults who are thought to be at risk

The law gives you several rights to control which personal information is used by us and how it is used by us.

You are legally entitled to ask to see any records we hold about you. If you wish to request access to the personal information we hold about you, please contact the Information Compliance Team through the University’s subject access procedure.

Whilst we try to ensure that any personal data we hold about you is correct, there may be situations where the information we hold is no longer accurate. If this is the case, please contact the department holding the information so that any errors can be investigated and corrected.   If you don’t know which department to contact please contact the Information Compliance Team.

In some circumstances you can ask for your personal information to be deleted, for example, in instances where:

• your personal information is no longer needed for the reason why it was collected in the first place
• you have removed your consent for us to use your information (where there is no other legal reason for us to use it)
• deleting the information is a legal requirement

Please note that there are situations where the right to be forgotten does not apply.  Please contact the Information Compliance Team to make a request.

In some circumstances, you have the right to restrict what processing an organisation carries out or ask that they stop processing your personal data.  When processing is restricted, the organisation may continue to store your data but not process it further.  Please contact the Information Compliance Team to make a request.

You have the right to ask for your personal information to be given back to you or another service provider of your choice in a commonly used format.  Please contact the Information Compliance Team to make a request.

You have the right to object to processing of your personal data at any time.  This means that you can stop or prevent an organisation from using your data.  However, it only applies in certain circumstances.  Please contact the Information Compliance Team to make a request.

You have a right to request that decisions based solely on automated processing, including profiling, which may produce a legal effect or affect them significantly, to have some form of human input so they are not automatically generated by a computer.  Please contact the Information Compliance Team to make a request.

We do not rely on solely automated decision-making to determine your marks. All marks are determined by human assessors.

You have the right to complain about how we use your personal data. In the first instance, please contact the Information Compliance Team.