European General Data Protection Regulation (GDPR)

European General Data Protection Regulation (GDPR)

If you have any questions about how GDPR may affect services, marketing and communications activities and about how to prepare, you can email:

Inicia el

Miércoles, 7 Marzo, 2018 (All day)

Termina el

Jueves, 8 Marzo, 2018 (All day)

With European General Data Protection Regulation (GDPR) coming into effect in May next year, time is getting tight for us all to prepare.


Back in March this year we discussed this topic in a joint meeting of SIG-Marcomms and SIG-MSP, with a focus on impacts for our services and marcomms activities. The notes are here ( and a blog is here (

The marketing communications special interest group SIG-Marcomms anticipates new EU regulations.


A little shocked by what they heard at their Poznan meeting on 7-8 March, SIG-Marcomms participants resolved to roll up their sleeves and prepare – for the May 2018 onset of the European Union’s General Data Protection Regulation (GDPR).


How many of the meeting’s 30 participants had known these regulations were coming? Less than half. How many of them were aware that their organisations had started to prepare? Around a third. And how many had begun specific actions to address the impacts on their marketing and communications activities? Only two.


Leading the group through the Regulation’s complicated terrain was Andrew Cormack, Chief Regulatory Adviser at Jisc Technologies who regularly blogsabout such matters. This apparently dry topic proved a rich source of discussion as he clearly outlined the implications for national research and education networking organisations (NRENs); in particular their federated access managementincident response and clouds services, as well as their management and use of mailing lists and record keeping about consent.


Recognising that gearing up for this will mean quite some work for many NRENs, the SIG-Marcomms participants explored what could be done to prepare, what positive aspects could be found, and what possibilities there may be for community collaboration in this area.SURFnet will add its processor agreement online like a stamp online in the catalogue.

Can we find way
s to streamline and standardise?
Can s
omeone make a list of services we all share so they can be modified, e
eduroam, Fielsender, Clouds?
raise together with MSP as a workshop to work together
How proceed with
People still on active li
you to get a message out to them a
sking them to
confirm they’re willing to remain on the list in the new context. For older
non/active lists
chances are that the email addresses are probably out of
date and would probably bounce anyway.
draft a template message we could all use
and adapt / translate
Andrew willing to help in principle
first need to identify which lists are
consent based.
Can GÉANT be a help provider in this matter
e.g. NRENs that don’t have legal
counsellor on the books?
TF Legal, if set up & supported by G
ÉANT, could do this although local laws
may differ so would have to check it locally, but whether GÉANT as an
organisation could help will be asked internally.

Cómo participar

If you have any questions about how GDPR may affect services, marketing and communications activities and about how to prepare, you can email: