What is GDPR?
The General Data Protection Regulation (GDPR) was adopted by the EU in April 2016 and replaced the EU Data Protection Directive 95/46/EC. The GDPR introduces new obligations to data processors and data controllers. It is important for schools to assess how the GDPR affects them and be compliant from 25th May 2018 onwards.
There are many aspects to be considered to ensure full compliance. For example, there are requirements for explicit consent to be freely given by individuals for their data to be used for specific purposes, as well as the right for individuals to request details of information held and for data to be deleted.
Parents of St.Gregory’s Catholic Primary School have been asked to complete a new data sheet for their children, providing information such as full name, address, date of birth, nationality, religion etc. The form also requests three emergency contacts – one being a member of the child’s extended family or friend of the family. Each person named as an emergency contact must sign the form giving their full permission for their details to be recorded ensuring that St.Gregory’s is compliant with the new GDPR.
All information is stored on SIMS.