Yeo Valley Primary School

Yeo Valley Primary School

General Data Protection Regulation (GDPR)

The EU General Data Protection Regulations 2016 is a new legislation which came into effect on 25th may 2018. It is designed to protect and empower with regard to individuals data privacy and places greater obligations and sanctions on organisations that process (e.g. obtain, use, store, share and destroy) personal data.

An information audit has been conducted in school by Mrs K Wright, who is the named Data Protection Officer (DPO) to identify and record what personal data is held in school, who we share it with, how long we keep it for and our lawful basis for processing it.

A policy has been created and procedures which reflect the GDPR changes, particularly in relation to data breach investigation and reporting: privacy notices, obtaining and managing consent and handling requests from individuals exercising their rights,

The GDPR Policy together with the GDPR compliant privacy notice for the school workforce May 2018 is able to read from the links below:

GDPR Policy May 2018

Privacy notice for the school workforce May 2018