The General Data Protection Regulations ("GDPR") came into force on 25th May 2018 and replaces the Data Protection Act 1998. The GDPR is designed to strengthen accountability for the safety and security of all data held by any organisation.
The Governing Body of the School is the Data Controller. The Data Protection Lead at the School is Michele Ardill, who can be contacted at: email@example.com
The school has appointed an external Data Protection Officer, Matthew Lantos, who can be contacted at: DPO.Lantos@bsp.london.
The following documents have been provided to all parents:
Privacy Notice - Use of your Child's Personal Data
Parents Acceptable Use Information
Consent Form - Pupil Personal Data - To withdraw your consent, or otherwise to amend your position, please write to Michele Ardill, Data Protection Lead, at the School, or by email to: firstname.lastname@example.org
The following policies may be useful:
Data Breach Notification Policy
Procedure for Receiving and Responding to Subject Access Requests
School Records Management and Retention Schedule
Please do not hesitate to contact the School if you have any queries at all relating to GDPR.