Data Protection Policy

Cambridge SU's Data Protection Policy makes commitments and provides guidance for Cambridge SU internally on how we protect personal information we interact with as part of our work as a students’ union.

Our work to keep personal information safe, secure and proportionate to our needs is ongoing. We have a protocol in place for reporting data breaches should they occur. Rich Wiltshire, Cambridge SU's CEO, is our dedicated Data Protection Officer; this role is enacted on behalf of the Board of Trustees.

If you would like to know more about your rights, or more about Data Protection legislation, the University has some helpful pages.

Subject Access Requests

You can request information that we hold about you in writing to We may also request further information that helps us fulfil your request as far as we are able. We will also need to be satisfied you are who you say you are. You will be asked to pay a £10 fee if your requests are unfounded or excessive.

If submitting a request, we advise you to be as specific as you can in the information you are asking from us; this is so we can comply with your request as far and as best as possible. Subject Access Requests require a response within 30 days.