At Waldegrave, we have always highly valued and protected all of our student, parents and staff data and continue to refine our practices and procedures to ensure we are compliant with current data protection regulations. For further information about General Data Protection Regulation (GDPR) please visit the ICO website. Mr A Isted is our appointed Data Protection Officer (DPO) and his role is to oversee the way the school handles data and ensure that requests for data are dealt with in accordance with GDPR. Any subject access requests (SAR), Freedom of Information requests (FOI) and queries you have about the way in which your data will reach her through our firstname.lastname@example.org e-mail address.
The new GDPR replaces the Data Protection Act 1998, and under this new framework, you have the right to:
Be informed about how we use your personal data.
- Request access to the personal data that the school holds.
- Request that your personal data is amended if it is inaccurate or incomplete.
- Request that your personal data is erased where there is no compelling reason for its continued processing.
- Request that the processing of your data is restricted.
- Object to your personal data being processed.
The GDPR will result in some significant changes for the school, meaning that the school will have to prove their compliance with the GDPR, by having effective policies in place. These new policies are available through the links below.
As a school it is also important to consider the data rights of children. Any data requests / alterations will require parental consent for children up to the age of 13, but after this point, the child may be able to consent for themselves.
One of the biggest changes has been in terms of consent; consent must be a ‘positive indication’, which means that it has to be opted into, clear and unambiguous. This means that any permissions you give have to be detailed separately and consent is only granted if you actively give permission to the school.
We are pleased to be able to announce that we have also appointed one of our school governors to the role of Data Protection Governor. This role will focus on monitoring the schools policies and procedures to ensure compliance with the new GDPR legislation and present an annual report to governors.
Please read the school’s privacy notices available on this website. It is important that you read and understand the privacy notice, as the school wants to ensure that you know what we are doing with your data and that you know we are acting legally.
When relevant policies have been checked and ratified, they will be published on the school’s website.
If you have any questions about GDPR, you can contact the ICO on 0303 123 1113 or by using their live chat, or you can visit their webpage.
For any data protection enquiries to the school, please email: email@example.com