GDPR

WHAT IS GDPR?

Following Brexit, Regulation (EU) 2016/679, General Data Protection Regulation (GDPR) is retained EU law and known as UK GDPR. The UK GDPR sits alongside an amended version of the Data Protection Act 2018 that relate to general personal data processing, powers of the Information Commissioner and sanctions and enforcement. The GDPR as it continues to apply in the EU is known as EU GDPR.

GDPR applies to all organisations processing personal data, including schools and academies.  The legislation will determine how data is processed and kept safe, and the legal rights individuals have in relation to their own data. 

The GDPR sets out the key principles that personal data shall be:

• Processed lawfully, fairly and in a transparent manner in relation to individuals;
• Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with this purpose;
• Adequate, relevant and limited to what is necessary in relation to the purposes for which it is processed;
• Accurate, and where necessary, kept up to date;
• Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed;
• Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisation measures.

The GDPR also provides the following rights for individuals:

• The right to be informed;
• The right of access;
• The right to rectification;
• The right to erasure;
• The right to restrict processing;
• The right to data portability;
• The right to object;
• Rights in relation to automated decision making and profiling.

The GDPR requires all compliant organisations to appoint a Data Protection Officer (DPO).  The DPO is responsible for overseeing data protection within the school. 

Documents

• Data Breach Policy
• Privacy Notice for Job Applicants
• Privacy notice for Pupils and Parents
• Privacy Notice for Visitors and Contractors
• Privacy Notice for Governors and Volunteers
• DfE Privacy Notice for Attendance Data Collection
• Data Retention Policy
• Freedom of Information Policy and Publication Scheme
• Cookie Policy
• Information Security Policy
• Electronic Information and Communication Systems Policy
• Cyber Security Policy

Contact Information

Vicky Phillips

Westways Primary School 
Mona Avenue
Sheffield
S10 1NE

Tel: 0114 266 2471

https://www.westwaysprimary.co.uk/ 

ICO Telephone Number: 0303 123 1113