GDPR Register & List of Applications

GDPR Register at TU Delft

The aim of the GDPR Register is to provide an overview of the personal data processed by TU Delft, why the data is being processed, how long it will be stored, in which systems/applications it appears and which components within TU Delft (University Services or faculties) will use it.

Providing insight into all this personal data is an integral part of controlling the use of personal information. The information in the GDPR register can be used during security incidents to gauge the level of risk to staff and students in the event of a data breach (or possible data breach). The GDPR Register is also an instrument to ascertain where certain types of personal data have been recorded if there is a request to consult or remove data. In addition, by setting up and keeping the GDPR Register, TU Delft is complying with the accountability requirement in the GDPR.

There are a number of rules governing keeping the GDPR Register:

  • Centralised processes and systems that involve the use of personal data are being entered by centralised services (e.g. IT, E&SA and HR). Service departments must ask management or the information manager if they want to have data entered in the GDPR Register.
  • Faculties can have processes and systems that deviate from centralised processes and systems (e.g. software that is only used by a specific faculty). In that case the faculty is responsible for updating the GDPR register. The faculty secretaries in every faculty know who is responsible for entering and processing data in the GDPR Register.
  • Where necessary, the privacy team can assist when processing information in the GDPR Register.
  • The privacy team periodically checks the content of the GDPR Register.

If you have any questions, feel free to contact the privacy team at

List of Applications

We recommend using only TU Delft approved applications, especially when processing personal data. This will help you handle your activity in a privacy-friendly and secure manner. The approved applications have undergone various checks including whether functionality meets the TU Delft architecture landscape, security, and privacy.

The tooling list is an overview of the tools currently being used in education by the TU Delft teaching population.