On May 25th 2018, the EU General Data Protection Regulation (GDPR) will come into effect—significantly changing the rules for how organizations’ protect the private data of EU citizens. This regulation has implications for organizations around the world including all schools. 

The seven principles of GDPR are:

1. Lawful, fair and transparent processing
2. Purpose limitation
3. Data minimization
4. Accuracy
5. Limited storage
6. Integrity and confidentiality
7. Accountability

Below is a link to a mind map for parents which explains GDPR in more detail

Our DPO is SPS DPO Services and is contactable: email:
sps-dpo-services@isystemsintegration.com;
SPS DPO Services, iSystems Integration, Devonshire House, 29-31 Elmfield Road, Bromley, Kent BR1 1LT

Our letters and policies linked to GDPR can be found on our policies page here.