On the 25th May 2018, the General Data Protection Regulations (GDPR) come into force in the UK. These are new data protection regulations which build upon the Data Protection Act of 1998.
The GDPR require public authorities and businesses to identify the lawful basis for storing personal data, audit information we already hold and take a ‘data protection by design and default’ approach to personal data.
We take data protection very seriously at The Nobel School. In line with GDPR requirements, we have already appointed a Data Protection Officer, who is contactable on email firstname.lastname@example.org. The DPO will oversee our approach to data management and protection.
In order to ensure that we comply with the new regulations, we are reviewing our current policies and practices. We have already updated our privacy notices in line with the new requirements. These can be found here: http://thenobelschool.org/privacy-policy/
As part of this compliance process, we are also seeking to update the consent forms/home school agreements we have received from parents and pupils with regard to the use of photographs and videos. The new regulations are clear that consent must be up-to-date and clearly recorded. From now on, lack of response cannot be interpreted as implied consent. The forms are being sent to all parents by email and we ask that you return these to us promptly.
Parents have always been required to give consent to use biometric data in school which is used to enable students speedy access to the cashless catering system and the library. This will continue and does not require updating.
To learn more about the General Data Protection Regulation, please visit the Information Commissioner’s Office website on http://ico.org.uk.
School Business Manager