Whether you are storing staff or pupil data, or answering requests for information on the data you hold, you must do it lawfully. Ensure data management and processing is compliant with data protection law with the resources below.
Communicating how you will use personal data is most commonly done in a privacy notice. Lisa Griffin offers a checklist to help create your privacy notices and guidance on gaining consent
The DPO will be responsible for monitoring your school’s compliance with the GDPR. Dai Durbridge explores what the role involves and how to prepare for it
The GDPR requires you to maintain records of your data processing activities. Use this template and guide to map the personal data and information you hold, where it came from and who its shared with
To comply with the GDPR, schools need to need to consider how staff practices and behaviours need to change. Dai Durbridge explores how to implement a cultural change to reduce the risk of a data breach
Under the GDPR, many schools are required to have a DPO. Lisa Griffin provides guidance on the responsibilities of the role and who can and can’t undertake it
The GDPR will change the way schools manage their data and information. Lisa Griffin provides a to-do list schools can use to prepare for the new data protection laws and outlines the changes