On the 25 May 2018, the UK’s Data Protection Act 1998 is being replaced by a new law called the GDPR (the EU General Data Protection Regulation 2016). This law governs how we collect, use and share people’s information and provides greater rights to individuals and control over how their information is handled by organisations, including schools.
We’re taking steps to review and update our processes around how we are handling your information and have appointed an internal Data Protection Officer to help us get ready for the changes. We will publish more information about how we are meeting the GDPR on this page in due course, which will include a privacy notice explaining how we handle pupil information, what rights you have and how to exercise them and our policies around this.
If in the meantime you would like to know more about the GDPR and your rights, please visit the UK’s data protection regulator, the Information Commissioner’s Office at www.ico.org.uk