On May 25th 2018, the General Data Protection Regulation (GDPR) will come into affect across the EU. The GDPR is a piece of EU-wide legislation which will determine how people's personal data is processed and kept safe and the legal rights individuals have in relation to their own data.
As public organisations, schools (and academies) are required to comply.
At Hillside Primary School, we have already started our GDPR journey. We have:
Put a team together to work on compliance.
Made everyone in school aware of GDPR including governors and appointed a GDPR governor.
Written an action plan.
Begun reviewing all of our data and documents.
Hillside already has strong data protection policies in place but these now all need to be updated in line with GDPR. In addition to comply with GDPR, we need to show a paper trail and how we are compliant. This is not going to be a quick job!
The process of becoming fully GDPR compliant will be long because it affects all aspects of the school. We already highly value and protect all of our student, parents and staff data and will continue to do so in the presence of GDPR.
As a parent/carer you may receive some letters from us regarding GDPR. Some of those may be about consent and some about updating your information with us. We would appreciate it if you would read all information you receive and send back any relevant documents back to school.