General Data Protection Regulation (GDPR)
The General Data Protection Regulation (GDPR) is a piece of EU-wide legislation which will determine how people’s personal data is processed and kept safe, and the legal rights individuals have in relation to their own data.
It applies from 25 May 2018 to organisations that process or handle personal data, including schools.
It’s similar to the Data Protection Act (DPA) 1998 in many ways. Most of the differences involve the GDPR building on or strengthening the principles of the DPA.
We will ensure we are compliant by
- Publishing Policies and Procedures explaining how we handle Data
- Publish Privacy Notices that explain who we share your information with
- Ensure our staff receive training on Data Protection.
- Appointing a Data Protection Officer who’s job it is to ensure we are complying with the new regulations
Our Policies and Procedures:
See GDPR Policy in Statutory policies above.
If you have a concern about the school’s data protection practice, you can contact our Data Protection Officer by emailing email@example.com . You can also raise a concern with the Information Commissioner’s Office (ICO). The ICO can be contacted on 0303 123 1113, Monday-Friday 9am-5pm.