General Data Protection Regulations (gdpr)

The EU General Data Protection Regulation (GDPR) became effective on 25 May 2018. The GDPR has brought considerable changes to data protection law both in the UK and across the European Economic Area.

What does GDPR mean for schools?

A great deal of the processing of personal data undertaken by schools will fall under a specific legal basis, ‘in the public interest’. As it is in the public interest to operate schools successfully, it will mean that specific consent will not be needed in the majority of cases in schools.

GDPR will ensure data is protected and will give individuals more control over their data, however this means schools will have greater accountability for the data. Under GDPR, consent must be explicitly given to anything that isn’t within the normal business of the school. 

Sacred Heart is part of the Assisi Catholic Trust and all polices for Sacred Heart Catholic Primary School relating to GDRP can be found on the Trust web site 

Please click here to access the following documents; Data Protection Policy, Privacy Notice, Freedom of Information Policy, Subject Access Request, Data Protection Impact Assessment, CCTV Policy.