GDPR – Data Protection changes & FAQ
From Friday 25th May 2018, new regulations will be introduced which affect how our School handle people’s data.
This is called the General Data Protection Regulation – (GDPR). Compliance with the regulations will be an on-going process and the School has appointed a Data Protection Officer (DPO) to advise and manage compliance with the regulation.
We have drawn up policies and procedures and notices that are compliant with the new regulations, and will keep you informed of any further developments.
Does the GDPR affect schools?
Yes, every organisation or business that handles personal data needs to review its data protection policies and bring them in line with the General Data Protection Regulation.
What is personal data?
Any information that can identify a natural person (‘the data subject’). This person can be identified, directly or indirectly, such as – name, email address or where they are, but also online identifiers such as IP address, types of website cookies and other device identifiers.
Who is our DPO and what do they do?
In simple terms, the DPO oversees GDPR compliance – independently – and acts as an intermediary between the school, data subjects, and the supervisory authority, ICO. Our school’s DPO is from an external company Tim Bridger from New Jubilee Company.
What about if I want to discuss something about data protection in our school?
The core Privacy team consists of the following members of staff Mrs Butterworth, Mr Baddhan, Mrs Lloyd and Mrs Scott – please feel free to email firstname.lastname@example.org for any questions you may have related to GDPR.