What is UK GDPR?
The UK GDPR is the UK’s post-Brexit version of the EU GDPR. The General Data Protection Regulation (GDPR) was formed to regulate the protection of personal data in 2018.
What does this mean for me?
This means all organisations must be transparent when handling your data and they must safeguard your information.
How are you using my data?
Please click the links below to see how we use pupil and staff data.
What are you doing to ensure my data is protected?
We write policies and train staff so we all know how to use your data safely. We ensure all of your data is only accessed by the appropriate staff. Computers are encrypted and can only be accessed using safe passwords. They are never left unlocked.
We have created a data retention schedule to ensure data that is held by us is only kept for an appropriate amount of time, this is dependent on the data. All data will be safely destroyed after the retention period. Please contact the school office on firstname.lastname@example.org if you would like a copy of our data retention schedule.
For more details about how we use your date please read our privacy policies:
Our school aims to ensure that all personal data collected about staff, pupils, parents, governors, visitors and other individuals is collected, stored and processed in accordance with the Data Protection Act 2018 (DPA 2018). Our data protection policy shows how we will do this.
What do I do if I think my data has been mishandled?
If data is mishandled, this is potentially a data breach and you should contact us as soon as you think this has happened. We will take further action, if necessary, by contacting our data protection officer in the local authority or by referring this to the ICO.
To contact the Data Protection Office (DPO) at Rochdale Council please email email@example.com
For more information on data protection, please visit the ICO website.