The General Data Protection Regulation (GDPR)
New data protection laws were introduced in the UK and across the EU on 25th May 2018 called the General Data Protection Regulation (GDPR). As we hold personal data, we must be compliant with these regulations. Visit the Guide to the Data Protection Regulation on the Information Commissioner's Office (ICO) website page to find out more.
You can also contact the ICO on 03031231113.
We have updated our privacy notices to ensure they meet the requirements of GDPR: please see below. It is important that you read and understood the relevant privacy notice, as the school wants to ensure that you understand what we are doing with your data and that you know we are acting legally.
We will post all updates on this page to help keep you as fully informed as possible.
A data breach notification is applied to all schools, and those likely to cause damage e.g. identify theft, have to be reported to the ICO within 72 hours. Failure to do so can result in a fine. A data protection impact assessment will be completed which will likely be carried out when using new technologies and the processing is likely to result in a high risk to the rights and freedom of individuals.
All schools are required to appoint a Data Protection Officer (DPO). The DPO for Dollis Junior School is Amanda Phillips and she can be contacted at firstname.lastname@example.org. The DPO for Dollis Infant School is Sonya Dring and she can be contacted via the school office at email@example.com.
From September 2019 there will be one DPO for Dollis Primary School.