GDPR Preparation - General Data Protection Regulation

GDPR?

 ​On May 25th 2018 the General Data Protection Regulation will come into effect across the EU. It is a new law that is being implemented in exactly the same way across all EU countries to create a level set of rules to ensure all data held and processed by organisations within the EU is secure and processed lawfully.

For further information about GDPR, please click here to visit the ICO website

---

​Public organisations, schools (and academies) are required to comply with GDPR. At Sidmouth College we have been working on our GDPR readiness since November 2017. Since then we have:

• Made everyone in College aware – all the way up to our governors.
• Been on several training courses
• Have put a team together to work on compliance
• Begun reviewing all of our data and documents and updating them

The process of becoming fully GDPR compliant will be a long one because it affects all aspects of the College.
We do already have strong Data Protection policies and protections but these now all need to be updated in line with GDPR. Furthermore the BIG change with GDPR is that we now have to produce a lot of documentation to prove our compliance. This is what is going to take us a long time!
But rest assured, we are working on it to make sure that GDPR will be central to our day-to-day culture.
We already highly value and protect all of our student, parent and staff data and will continue to do so in the presence of GDPR.
As a parent/carer you may receive some letters from us regarding GDPR. Some of those may be about consent and some about updating your information with us. Please do read and send back everything you receive.

The personal data we hold on pupils and staff is held in accordance with the Schools Toolkit.

Click below to read the privacy notices for staff and students
​
​Privacy Notice for Staff
​Privacy Notice for Students