GDPR
What is GDPR?
The GDPR applied in all EU member states from 25 May 2018. This affects how schools manage personal data and how this is protected and shared. The EU GDPR was incorporated into UK legislation as the 'UK GDPR' by The Data Protection, Privacy and Electronic Communications (Amendments etc) (EU Exit) Regulations 2020 in January 2021.
The EU’s General Data Protection Regulation (GDPR) is the result of four years of work by the EU to bring data protection legislation into line with new previously unforeseen ways that data is now used.
Previously the UK relied on the Data Protection Act 1998, which was enacted following the 1995 EU Data Protection Directive, but this has been superseded by the new legislation. It introduces tougher fines for non-compliance and breaches, and gives people more say over what companies can do with their data. It also makes data protection rules more or less identical throughout the EU.
We have updated Privacy Notices, Policies and Consent Forms to make sure we are compliant with the new GDPR. These can be found here:
Check regularly on this section to see what is new.
Follow the link for more information about the new GDPR regulations from the ICO website.
If you wish you contact our Data Protection Officer, you can do so by emailing office@bpa.act-academytrust.org