On the 25th May 2018, the General Data Protection Regulations (GDPR) come into force in the UK. These data protection regulations build upon the Data Protection Act of 1998. The GDPR require public authorities and businesses to identify the lawful basis for storing personal data, audit information we already hold and take a ‘data protection by design and default’ approach to personal data.

Schools process a lot of personal data relating to pupils and staff in order to carry out their functions. They also acquire personal data relating to other people including, for example, parents/carers, governors, members of the local community, suppliers, contractors and consultants.

Please click here to read our Privacy Notice to see what we are doing to comply with GDPR regulations.

To learn more about the General Data Protection Regulation, please visit the Information Commissioner’s Office website