Eureka! Institutional Repository

General Data Protection Regulation (GDPR) is an European Union (EU) regulation intended to strengthen and unify data protection for all individuals within the EU. The enforcement date is 25th May 2018, at which time organizations in non-compliance will face heavy fines. In accordance with the GDPR, Member States shall protect the fundamental rights and freedoms of natural persons, and in particular their right to privacy, with respect to the processing of personal data. Crucial social structure, as the Educational Institutes must interpret and apply the new EU legislation, with regards to requesting student consent for the use of their data for learning analytics. Due to the fact, that these kind of data are stored in servers, the Educational policy must provide the Security of Informatics Systems in order to eliminate the possibility for data leakage. Due to the fact that the GDPR legislation is extremely newly, limited bibliography data are available and few empirical studies are the only source of knowledge. The aim of MSc thesis is to propose the general context of GDPR compliance that an Educational Institute must apply in order to avoid heavy fines. Acceptance of specific procedures guarantee the success of this undertaking. Master of Alexander Technological Educational Institute will be referred as the case study of this purpose. Taking under consideration the difficulties and the limitations of GDPR EU legislation when is applied in an Educational Institute, here is the first systematic approach to create a complete quality system for this purpose. In the meantime, we will try to spot the difficulties and suggest solutions in order this completed procedure could be easily applicable in the daily practical routine