Keystone GDPR Compliance

Keystone Academic Solutions is fully compliant with GDPR as of May 25, 2018


What is GDPR?
GDPR is the new EU law that dictates the use and processing of the personal data of individuals. You can read more about it here.

Who does GDPR apply to?
GDPR applies to you if your institution processes personal data of anyone located in the EU or EEA.

When should you be ready for GDPR?
You must be compliant with GDPR by May 25, 2018.

Here Is An Overview Of The Processes We Have Implemented To Ensure GDPR Compliance

Rectification-128wRight of rectification

Students can rectify their personal information at any time by contacting us directly or by accessing their account in StudentsHub.
Forgotten-128wRight to be forgotten

Students can, on request, have their personal information removed at any time. Immediately after a student has submitted a request to us, we will email you with instructions on how to remove their personal data from SmartHub. Please note that if you have placed this student’s personal data in any external systems (e.g. a CRM system), you must also remove it there unless you have gained a separate consent to use it.
Portability-128wRight to portability

Students can, on request, have their personal information transferred to a third party or another controller
Object-128wRight to object

Students can, on request, unsubscribe at any time to any specific use of their personal data, including the receipt of information about specific programs, or newsletters about relevant programs and other pertinent information.
Access-128wRight of access

Students can, on request, gain access to the personal data we collect from them and how it is processed. Please refer to our Data Processing Agreement for details about the personal data we collect and what we do with it.
 

Important information for schools about Keystone's GDPR compliance

  • As of May 25, 2018, the contact forms on our websites will only provide you with consent to contact students with information about the specific program they inquired about on our websites. If you would like to contact these students for any other purpose (information about other programs, news, events etc.), you are required to ask them for that consent in your first communication with them. It is also possible to add this consent to your contact forms on our websites. Please ask your account manager for details.

  • For all students who contacted you from one of our websites prior to May 25, 2018, you are also required to send them an email asking them to reconfirm their consent for any other purpose beyond communication about the specific program they inquired about on our websites. Be sure to be specific about which type of emails you will send them (e.g. marketing, newsletters etc.) and through which contact method (e.g. email, phone, SMS).

  • It is not necessary for you to delete all student contacts you received from our websites before May 25, 2018. You already have consent to contact the students about the specific program they inquired about, but you are required to ask for additional consent for other specific purposes, such as newsletters and marketing information.

More Information

Website Terms & Conditions

LEARN MORE

Privacy Policy

LEARN MORE

Data Agreement

LEARN MORE

Any questions?

Feel free to send us a message, and we will be in touch.