General Data Protection Regulations (GDPR) and briefing session for schools (repeat) 28 March
02 Mar 2018
From 25 May 2018, the Data Protection Act (DPA) will be replaced by the General Data Protection Regulation (GDPR).
The GDPR represents an evolution from the DPA, and its purpose is to strengthen and unify the safety and security of all (paper based and electronic) data held within an organisation.
The GDPR and the DPA share many common principles, but the new legislation does include new elements and enhancements, which have implications for schools and the way data and information is managed.
As schools are data controllers they are required to comply so it is important that schools, governors and trustees begin to consider any potential impact.
The GDPR apply to all personal data collected by an organisation.
Relevant staff and governors can now sign up for the repeat GDPR workshop (from February), which provides:
- An overview of the GDPR which comes in to force in May 2018
- Recommended actions and practices
- A data asset audit tool.
Event and booking details
Venue: Ealing Education Centre
Date: Wednesday, 28 March 2018
Time: 9.30am to 12noon
Further information on GDPR
The regulator for the Data Protection Act 1998, the Information Commissioners Office (ICO) has produced guidance notes which are available on their website.
This includes preparing for the GDPR 12 steps to prepare for the changes and an overview of the GDPR document. They have guidance notes under the current Act specifically for education as well: https://ico.org.uk/for-organisations/education/
The ICO news blog clarifies information and dispels some of the myths about the GDPR.
London Grid for Learning links and information on GDPR: www.gdpr.lgfl.net
Many companies provide sound advice for schools, but it must be recognised that they also have a commercial motive. Always double check with the ICO.
ICO webinar to help schools with GDPR compliance.
Information and a checklist on The Schoolbus
Please note all data controllers - including schools - should be on the ICO’s register of data controllers.
By visiting this link, you can confirm if your school is listed on it.