New Data Protection Regulations and Their Impact on Universities

Contemporary technological progress was possible on the background of rapid internet access, geographical spreading which has facilitating not only the rapid transmission of vast amount of data but also not so honest storage, use and transmission of this big amount of data. Internet access needs credentials, and frequently credentials are linked to personal data that nowadays can be considered priceless. That is why the protection of personal data must be a priority for the universities. Why new data protection regulation? Why students and employee data are so important? Why and how to protect all these big amounts of data? How to implement new data protection regulations in universities? From all these questions, we start to analyze the actual and future legal environment regarding data protection in order to identify the best practical cyber security solutions. The analysis will start from the replacement of Data Protection Directive 95/46/EC and national regulation with the EU General Data Protection Regulation (GDPR). Intention is to identify the way universities will approach data privacy in order to collect, store and transmit data on students or teachers and in what measure the selected approach will affect educational and research processes. Role of human factor have also been considering in the framework of new regulations, with the focus on necessary relations grid around Data Protection Officer. The analysis will go further with the considerations regarding the place of cyber insurance process in the institutional grid, which is involved in the data protection process, on the one hand, and the necessary resources for implementing the new regulations.