The General Data Protection Regulation (GDPR)
The General Data Protection Regulation (GDPR) is a piece of EU-wide legislation which will determine how people’s personal data is processed and kept safe, and the legal rights individuals have in relation to their own data.
‘Personal data’ means information that can identify a living individual.
The GDPR sets out the key principles that all personal data must be processed in line with. Data must be:
There are also stronger rights for individuals regarding their own data. The individual’s rights include:
The GDPR is similar to the Data Protection Act (DPA) 1998 (which schools already comply with), but strengthens many of the DPA’s principles. The main changes are:
How We Aim To Achieve This
At Hollinswood Primary School & Nursery we take data protection seriously and to ensure we are fully compliant with both the Data Protection Act and the new GDPR legislation. To this extent we have undertaken the following actions:
Whilst the education of your child is not dependent on your consent being given, we do also ask for consent to certain activities. Whilst this does not fall under the scope of the GDPR, the refusal to give consent to certain requests (i.e. trips and visits, watching a video) could have an impact on your child being included in certain educational activities.