What is GDPR?
The GDPR came into force from 25 May 2018. They affect how schools manage personal data and how this is protected and shared.
The EU’s General Data Protection Regulation (GDPR) is the result of four years of work by the EU to bring data protection legislation into line with new previously unforeseen ways that data is now used.
Previously, the UK relied on the Data Protection Act 1998, which was enacted following the 1995 EU Data Protection Directive, but this was superseded by the new legislation. It introduces tougher fines for non-compliance and breaches, and gives people more say over what companies can do with their data. It also makes data protection rules more or less identical throughout the EU.
Follow the link for more information about the new GDPR regulations from the ICO website.
If you wish you contact our Data Protection Officer, you can do so by emailing email@example.com
Reporting a Data Breach
If you believe that your personal or sensitive data has been compromised, please complete the “Reporting a Data Breach” form by selecting the icon below or collect a form within your Academy. All forms will be given to the Data Protection Officer to investigate.
Subject Access Requests (SAR)
If you wish to obtain information that we hold for you or your child, please select the icon below and complete the “Subject Access Request” form or retrieve a paper copy available within your Academy. Proof of ID will need to be provided in order for the request to be completed and a response will be issued within one month from the date the request is received.
Freedom of Information (FOI)
If you wish to submit a freedom of information request you can do so by emailing firstname.lastname@example.org