General Data Protection Regulation
Mary Exton Primary School is GDPR compliant . By this statement we are seeking to inform employees, pupils, parents, business partners and suppliers of our commitment to good data protection practice and ongoing GDPR compliance.
What is GDPR?
The EU General Data Protection Regulation (GDPR) became effective on 25 May 2018. The GDPR has brought considerable changes to data protection law both in the UK and across the European Economic Area.
Mary Exton Primary School has always sought to ensure compliance with data protection law and these practices have helped us immensely in GDPR compliance. We undertake an audit of all our data to ensure its compliance with GDPR on a termly basis and as part of this check we ensure that we have:
Please see our Privacy Notices for pupils and parents as well as any of our policies which link closely to GDPR.
GDPR is central to our day-to-day culture. We already highly value and protect all of our pupil, parent and workforce data and will continue to do so in the presence of GDPR.
We already highly value and protect all of our student, parents and staff data and will update or practices and procedures to keep up-to-date with current data protection regulations.
For further information about GDPR please visit the ICO website. We have appointed a Data Protection Officer (DPO) to oversee the way the school handles data and ensure that requests for data are dealt with in accordance with GDPR.
Any subject access requests (SAR), Freedom of Information requests (FOI) and queries you have about the way in which your data is handled please contact our DPO.
Privacy Notices and Linked Policies
Please visit our Policies, Forms and Instructions webpage for the following privacy notices and policies:
Privacy notice - simple (Parent and Pupil)
Privacy notice - full (Parent and Pupil)