SURF values the privacy of both its member institutions and of visitors to its website. When we ask you for your personal details, we handle them with care. We always comply with the General Data Protection Regulation (GDPR).

Storage and security of personal data

SURF will process your personal data exclusively for the provision of the services of SURF and its operating companies to you or to your institution. Any personal data you supply will not be kept for longer than is necessary.

When processing personal data, SURF will maintain an adequate level of security in order to prevent unauthorised access to or modification, disclosure or loss of personal data.

More information

SURF is keen to be transparent about its policy on privacy and cookies. If you have a query or request in this regard, please e-mail

Changes to statement

SURF may amend this privacy statement. We therefore recommend that you review this privacy statement regularly.