The General Data Protection Regulations (GDPR) came into force in May 2018. The GDPR involves significantly increased data reporting requirements as set out below.
Under the GDPR, we are required to be transparent about any personal information that we hold. We sometimes transfer personal information to other authorities, so that we can operate effectively as a school; this allows us to positively implement our duty of care for the school community. Under data regulations we are lawfully able to do this to carry out tasks in the public interest and as part of our legal obligation. We are required to complete regular Information Audits, and have an updated Data Protection Policy and Privacy Notices (see below).
You have rights under GDPR as follows:
a right of access to a copy of any personal information data that we hold on you or your children. However, we may have to consider applying for an exemption to some information where our duties maybe potentially compromised.
a right to object to data processing that is likely to cause or is causing damage or distress;
a right to prevent data processing for direct marketing;
a right to object to decisions being taken by automated means, unless we have an overriding legitimate reason to continue;
a right in certain circumstances to have inaccurate personal data rectified, blocked, erased or destroyed.
a right to claim compensation for damages caused by a breach of the Data Protection Act/GDPR.
If you would like to make any requests, think your data has been misused or that it is not secure, you should contact us:
Data Protection Controller, the Head Teacher, (NB this duty may be delegated to other employees), or Ruth Hawker, designated Data Proctection Controller for Helmdon Primary School at Plumsun Ltd www.plumsun.com .
If you are unhappy with any response that you receive or if you need any further advice, you may wish to contact the Information Commissioner’s Office (ICO): ICO helpline telephone: 0303 123 1113.