What is GDPR and why is it being introduced?
In very simple terms, the General Data Protection Regulation can be likened to an up-to-date version of the Data Protection Act. When the first data protection laws were introduced in 1998, Google didn’t even exist. The GDPR recognises that our world – and the way our personal data is processed – has changed significantly in the last two decades.
GDPR privacy notice for pupils and their families
Schools are currently required to inform pupils and their families about how their personal data may be collected and used.
This requirement will remain once the General Data Protection Regulation (GDPR) comes into effect on 25 May 2018; however, schools will be required to revise their privacy notices to include further information on processing individuals’ personal data, in order to be compliant with the GDPR.
As a school, we handle a lot of sensitive personal data about children, families and staff members. This data needs to be processed safely and kept secure, to stop it falling into the wrong hands or being used for a purpose other than what it was intended for.
In a primary school setting, it falls to a person with parental responsibility (a parent, carer or guardian) to provide consent for processing personal data relating to a child. We are currently reviewing and where necessary revising our systems for collecting, storing and sharing information.
This explanation includes information provided by ‘Parenta – working together for our children’
The following policies have been issued to parents and school employees:
- GDPR Privacy Notice for Pupils and their Families
- Images and Video Parental/Carer Consent Form
- GDPR Notice for the School Workforce
It is important that you return these forms promptly so that we can continue to manage your data.