GDPR

On 25th May 2018, the current data protection law  changed to become the General Data Protection Regulation (GDPR). The GDPR enforced a number of changes on the ways in which schools and businesses collect, store, use, manage, retain and eventually destroy the personal data of pupils, parents, staff, governors and others. 

The Information Commissioner’s Office (ICO) has made it clear that, whilst the law comes into force in May of this year, it sees compliance with the law as being an ongoing process. By this it means that it expects organisations to be in a compliant state by May, but that future events will undoubtedly influence the way schools work and so their ways of complying with the law will need to evolve as time progresses. 

For further information visit the ICO website and read our documents on this page.  


Please view the short video GDPR Mind Map for Parents.


GDPR Consent Form
GDPR Letter from the Headteacher
IRMS Retention Guidlines for Schools
Data Protection Policy (GDPR Compliant)
GDPR - Statement Of Intent
Changes to Data Protection Law GDPR May 2018
GDPR Factsheet January 2018
Privacy Notice for Students
Privacy Notice for Parents and Carers
Privacy Notice for Parents and Carers Own Data
Privacy Notice for School Staff
Privacy Notice for Governors & Volunteers
Privacy Notice for Job Applicants