Data Protection & GDPR
Westbury Infant School is committed to protecting and respecting the confidentiality of the School's community.
This section of the website will provide information about:
- The personal information that we hold and how we process personal data (see Privacy Notices page)
- Information on how to contact the School's Data Protection Officer (DPO)
Our DPO is Steve Debruin - http://www.auditwest.co.uk/ Bath and North East Somerset Council.
We uphold the principles of the General Data Protection Regulation (GDPR), which are:
- Lawfulness, fairness and transparency
- Purpose limitation
- Data minimisation
- Storage limitation
- Integrity and confidentiality
What is GDPR?
Things are changing!
The GDPR will apply in all EU member states from 25 May 2018. This will affect how schools manage personal data and how this is protected and shared.
The EU's General Data Protection Regulation (GDPR) is the result of four years of work by the EU to bring data protection legislation into line with new, previously unforeseen ways that data is now used.
Currently, the UK relies on the Data Protection Act 1998, which was enacted following the 1995 EU Data Protection Directive, but this will be superseded by the new legislation. It introduces tougher fines for non-compliance and breaches, and gives people more say over what companies can do with their data. It also makes data protection rules more or less identical throughout the EU.
Click here to see GDPR& Data Protection Policy.
Click here to find our consent form.
Please regularly check this section to see what is new.
Follow the link for more information on GDPR from the Information Commissioners Office ICO. https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/