General Data Protection Regulation
The UK General Data Protection Regulation (UK GDPR) ensures a balance between an individual’s rights to privacy and the lawful processing of personal data undertaken by organisations in the course of their business.
It aims to protect the rights of individuals about whom data is obtained, stored, processed or supplied and requires that organisations take appropriate security measures against unauthorised access, alteration, disclosure or destruction of personal data.
The School will protect and maintain a balance between data protection rights in accordance with the UK GDPR. This policy sets out how we handle the personal data of our pupils, parents, suppliers, employees, workers and other third parties.
This policy does not form part of any individual’s terms and conditions of employment with the School and is not intended to have contractual effect.
Changes to data protection legislation will be monitored and further amendments may be required to this policy in order to remain compliant with legal obligations.
All members of staff are required to familiarise themselves with its content and comply with the provisions contained in it. Breach of this policy will be treated as a disciplinary offence which may result in disciplinary action under the School’s Disciplinary Policy and Procedure up to and including summary dismissal depending on the seriousness of the breach.
Data Protection Policy – Jan 2025
Privacy Notice – Staff – Oct 2024
Privacy Notice – Pupils and Parents -Oct 2024
Privacy Notice – Job Applicants -Oct2024
Privacy Notice – Governors and Volunteers -Oct 2024