Privacy notice
Privacy notice: Strategy to Recovery staff survey
Updated on 29 January 2026
What this is for
This survey supports the University’s consultation on the Strategy to Recovery. We will use responses to identify themes and produce an aggregated summary report.
What we are collecting
We are not asking for names, email addresses, staff IDs, usernames, or other identifiers. Please avoid including information in your answers that identifies you or anyone else.
Free-text answers
Please do not include:
- names or identifying details (yours or anyone else’s)
- sensitive personal information (e.g. health, ethnicity, religion, union membership, political views)
- allegations about identifiable individuals
If personal or sensitive details are included, they may be removed before analysis or sharing.
How we will use the information
Responses will be analysed to identify themes and trends. Results will be shared only in an aggregated summary form. We will avoid quotes or details that could identify individuals.
Lawful basis
We process this information under Article 6(1)(e) UK GDPR (task carried out in the public interest / in the exercise of official authority), as part of the University’s strategic planning and staff consultation activities. We are not seeking special category data.
Use of AI tools
We may use AI tools in a limited way to help group responses into themes and summarise results. AI will not be used to make decisions about individuals.
Who will see responses
Access to raw responses will be limited to a small internal analysis group. If an external provider/consultant supports analysis, they will only receive what is necessary and will be bound by appropriate contractual safeguards.
How long we keep it
Raw responses will be kept only as long as needed to complete analysis and reporting, then deleted in line with the agreed retention period for this exercise. Aggregated, non-identifiable themes may be kept longer for planning/audit purposes.
Your rights and contact
If you have questions, contact the Data Protection Officer via [email protected]. If you include identifying details in your response, that content may be treated as personal data and data protection rights may apply to it.