Data Protection Review
The purpose of a data protection review is to identify potential risks before the collection and processing of personal data and to minimize them where possible.
Data Protection Review for Research Projects
Basic legal questions should already be considered during the planning of and before the start of a research project, including whether the project complies with data protection requirements.
If an ethics self-assessment of the University Ethics Committee (UEK) shows that a planned research project does not require approval, a data protection review of compliance with data protection rules is sufficient. Such a review is carried out in collaboration with the Data Protection Officer; please fill out the corresponding application form to start.
If you have questions, you can contact the Data Protection Officer's team by email at any time.
Data Protection Impact Assessment for IT-Tools (Datenblatt)
Before a new IT-Tool for teaching, research, or administration can be introduced, it must be reviewed by the Data Protection Officer. The Datenblatt must be filled out and submitted before this can happen. If there is potentially a high risk to the fundamental rights of data subjects, a data protection impact assessment must be carried out. The tool is then approved for specific data classes depending on the assessed risk.
Creation of a new website (IT-Services) also requires a data protection statement.
If you want to use a new tool, please contact the Data Protection Officer.