The General Data Protection Regulation (GDPR) was adopted by the EU in April 2016 and replaced the EU Data Protection Directive 95/46/EC. The GDPR introduces new obligations to data processors and data controllers. It is important for schools to assess how the GDPR affects them and be compliant from May 2018 onwards.
There are many aspects to be considered to ensure full compliance. For example, there are requirements for explicit consent to be freely given by individuals for their data to be used for specific purposes, as well as the right for individuals to request details of information held and for data to be deleted.
Parents of St George’s Catholic Primary School & Nursery have been asked to complete a new data sheet for their children, providing information such as full name, address, date of birth, nationality, religion etc. The form also requests emergency contacts.
All this information is stored on our school’s electronic data system, known as SIMS. This is a highly secure system managed by Sefton so all data held is secure with restricted access.