What is the ‘General Data Protection Regulation’ (GDPR) and how does it relate to school?

  • The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union (EU).
  • The GDPR sets out the principles for data management and the rights of the individual, while also imposing fines that can be revenue-based.
  • The GDPR covers all companies that deal with data of EU citizens, so it is a critical regulation for corporate compliance officers at banks, insurers, and other financial companies.
  • GDPR came into effect across the EU on May 25, 2018.
  • Schools are required to inform pupils and their families about how their personal data may be collected and used.
  • Schools will be required to revise their privacy notices to include further information on processing individuals’ personal data, in order to be compliant with the GDPR.

If you would like to know more specific details, click the button for the Information Commisioner’s Office (ICO)

Our School GDPR Policies