May 29, 2018

The new European Union General Data Protection Regulation, also known as EU GDPR, went into effect on May 25th, 2018. The EU GDPR regulates how organizations must protect and handle the information of people who are in the European Union. European data protection regulators could levy hefty fines to organizations that are subject to but do not comply with the new regulation.

As a global university, Drexel works with onsite and online students, faculty, staff, patients, research subjects and others who are in the European Union. Certain GDPR provisions may apply to some of our community members.

“Don’t panic!” - to quote The Hitchhiker’s Guide to the Galaxy. The Chief Information Security Officer, Dr. Pablo Molina, and the interim Chief Privacy Officer, Robert Asante, are working with representatives from several Drexel University offices to inventory our systems and processes. They are also working with the Office of the General Counsel to identify what aspects of GDPR may be applicable to Drexel University. If you have questions about how GDPR may affect a specific Drexel project or activity, please contact gdpr@drexel.edu or check out the Q/A on Drexel’s News Blog.