General Data Protection Regulation (GDPR)
The GDPR is a piece of EU-wide legislation which determines how people’s personal data is processed and kept safe, and the legal rights individuals have in relation to their own data.
This regulation applies from the 25th May 2018 to organisations that process or handle personal data, including schools.
It is similar to the Data Protection Act 1998 in many ways and most of the differences involve the GDPR building on or strengthening the principles of the Data Protection Act.
For the first time, the GDPR will bring in special protection for children’s personal data, though only in the context of commercial internet services such as social networking.
For more information please see the documents below or visit our Trust's website (DEMAT) at www.demat.org.uk/compliance/.