On May 25th 2018, the EU General Data Protection Regulation (GDPR) will come into effect—significantly changing the rules for how organizations’ protect the private data of EU citizens. This regulation has implications for organizations around the world including all schools. 

The seven principles of GDPR are:

1. Lawful, fair and transparent processing
2. Purpose limitation
3. Data minimization
4. Accuracy
5. Limited storage
6. Integrity and confidentiality
7. Accountability

Below is a link to a mind map for parents which explains GDPR in more detail

Our DPO is SPS DPO Services and is contactable: email:
SPS DPO Services, iSystems Integration, Devonshire House, 29-31 Elmfield Road, Bromley, Kent BR1 1LT

Our letters and policies linked to GDPR are in the usual areas of the website.  In addition, we have placed links to each of them below.

Data Protection Policy – Updated May 2018

ICT Policy – Updated May 2018

Retention Schedule May 2018

Freedom of Information Act Publication Scheme May 2018

Parents and Pupils Privacy Notice May 2018

Parental Consent Permission Forms May 2018

GDPR Letter to Parents May 2018

%d bloggers like this: