This self-study course will enable all school staff to learn more about GDPR and how it has affected education settings since its introduction in May 2018.

The course identifies the most common pitfalls and issues affecting schools since its introduction and suggests ways to avoid making the same mistakes.

This self-study programme comprises of two units of study, with each unit taking between 45 minutes and one hour to complete. You can work through this at your own pace. The course has a number of resources to aid your learning and an end of unit quiz for each unit that will help you to reflect on your understanding and test your knowledge.

aims and outcomes

  • Explore some of the common mistakes that occur and consider ways to avoid them.
  • Consider how the data protection officer (DPO) and staff can keep themselves abreast of changes.
  • Understand the implications of breaches of GDPR and the Data Protection Act.
  • Consider the importance of communication.
  • Explore ways to ensure compliance can be evidenced.
  • Increase understanding of knowledge-based research and its place within the organisation.

Course content

  • Unit 1: What has happened since GDPR was introduced?
  • Unit 2: Compliance, Communication and CPD - the three Cs


Caroline is the Head of School Business Strategy and Resources at Miles Coverdale Primary School in London.