Protecting Your Data - General Data Protection Regulations
The GDPR came into force in all EU member states in 25th May 2018. This controls how schools manage personal data and how this is protected and shared.
The EU's General Data Protection Regulation (GDPR) is the result of four years of work by the EU to bring data protection legislation into line with new, previously unforeseen ways that data is now used.
Previously, data was controlled by the Data Protection Act 1998, which was enacted following the 1995 EU Data Protection Directive, but this will be superseded by the new legislation. It has introduced tougher fines for non-compliance and breaches, and has given people more say over what companies can do with their data. It has made data protection rules more or less identical throughout the EU.
Schools are required to comply with GDPR so we have been working on our compliance in the following ways. We have:
- Been on training courses
- Made staff and governors aware of the implications
- Developed a compliance team consisting of HT, Bursar and Governors
- Review regularly all of our data and documents and updating them
We are compliant and fulfilling the responsibility in line with GDPR. We value and protect all of our student, parent and staff data. As a parent/carer you may receive some letters from us regarding GDPR. Some of those may be about consent and some about updating your information with us.
We regularly update our Privacy Notices, policies and Consent Forms to make sure we are compliant.
To find out more about the regulation click here
Our GDPR compliance ensures that we are working within the 7 Data Protection Principles:
Information video for parents from the ICO webiste can be found here
Infographic for parents can be found here
Information Commissioner Website can be found here