You may have heard of the General Data Protection Regulation (or GDPR); if you haven’t, it is a change in the legislation regarding how personal data can be stored and used and it came into effect on the 25th May 2018.
Personal data is defined as any information relating to an identifiable person who can be directly or indirectly identified from it. This is basic information such as name and email address, photos, and IDs. This includes any electronically gathered and/or stored information, as well as paper-based storage. There are also ‘special categories’ of personal data that schools are likely to handle, such as ethnicity and health information, which have additional rules around how the data should be stored and handled. We are registered with the Information Commissioners Office: if you have any concerns regarding data protection, please look at the ICO website.
We have outlined our GDPR compliance below and provided some useful links: