General Data Protection Regulation (GDPR) Notice

Introduced by the European Union (EU), the GDPR, effective May 25, 2018, is a law to protect the privacy and personal information of EU residents (any individual who resides in an EU member state, including both EU citizens and non-EU citizens). The GDPR imposes certain obligations and restrictions on entities that process the personal data of EU residents and provides a number of rights to these residents, including, but not limited to the following: the right to be informed about the data collected and the reasons why; the right to require the organization to permanently delete the individual’s personal data; the right to correct errors in personal data collected or processed by an organization; the right to ensure that data is appropriately secured and only retained for as long as is necessary.

Personal Data

Personal data includes, but is not limited to: 

  • Name, address and ID numbers;
  • Political opinions;
  • Religious or philosophical beliefs;
  • Trade union membership;
  • Genetic or biometric data;
  • Health data;
  • Sexual orientation; and
  • Racial or ethnic origin

GDPR Request Form

Any EU resident who has or had a formal relationship with the College and were assigned a College ID# (including students, alumni, and employees) may exercise their rights under GDPR. Please submit the GDPR Request Form .

GDPR Working Group

Manhattan College has convened a working group (GDPR Working Group) to examine and analyze GDPR and its application to the College. The GDPR Working group will work with the College community to:

  • Review and assess compliance efforts
  • Update and develop privacy policies and notices
  • Update and develop contractual language


If you have questions about:

  • Right to Request Information
  • Right to be Forgotten/Erasure
  • Right to Rectification

or any other rights provided by the GDPR, please email