Data Protection Act Policy And Operational Procedures For the Trust, Its Academies, And Essa Nursery
|
|
- Damian Webb
- 6 years ago
- Views:
Transcription
1 Data Protection Act Policy And Operational Procedures For the Trust, Its Academies, And Essa Nursery Date approved by the Board of Directors: 7 July 2017 Date adopted by Essa Academy Local Governing Body: 19 September 2017 Date adopted by Essa Primary Academy Local Governing Body: 20 September 2017 Date adopted by Essa Nursery Management Committee- 19 September 2017 Date for review: July 2018 Policy written by: Berny Sansome Policy revised/ updated by: Justine Hatter - May 2017 Data Protection Act Policy, EFAT Version 6 Final, May Draft 1
2 Contents Page 3-7: The Policy Page 8-9: Annex 1 Privacy Notice/ Fair Processing Notice for Essa Academy- to be given to parents/ carers Page 10-1: Annex 2 Privacy Notice/ Fair Processing Notice for Essa Primary Academy- to be given to parents/ carers Page Annex 3 Privacy Notice/ Fair Processing Notice for Essa Nursery- to be given to parents/carers Page 14 : Annex 4 Making a Request for Information (subject access request)- by a parent/carer or a student Page 15-16: Annex 5 Privacy Notice/ Fair Processing Noticeto be given to employees and agency staff, directors, governors, other volunteers, and contractors Page 17: Annex 6 Making a Request for Information - (subject access request) by employees, contractors, directors, governors and other volunteers Page 18-20: Annex 7 handlers Operational Procedures- all data Page 21 : Annex 8 Flow Chart-Subject Access Request Data Protection Act Policy, EFAT Version 6 Final, May Draft 2
3 INTRODUCTION: THE POLICY Essa Foundation Academies Trust (EFAT) collects and uses personal information about staff, nursery children, pupils/ students, parents/ carers, directors and governors of the trust, and other individuals who come into contact with the trust and its academies and nursery. This information is gathered in order to enable EFAT academies and nursery to provide education and other associated functions. In addition there may be a legal requirement to collect and use information to ensure that the trust, and its academies and nursery, complies with statutory obligations. The trust has a duty to be registered as a data controller with the information Commissioners Office (ICO) detailing the information held and its use. These details are then available on the ICO s website. EFAT academies and nursery, on behalf of the trust, also have a duty to issue a Fair Processing Notice (privacy notice) to all parents/carers that summarises the information held on nursery children and pupils/ students and their families, why it is held, and the other parties to whom it may be passed on. Employees, directors and governors, other volunteers, and other individuals are also notified, by a fair processing notice, about information held about them on appointment. The Data Protection Act (DPA) 1998 sets out the safeguards that ensure that personal information is handled correctly however it is collected, recorded and used (whether on paper, stored on computer, or recorded in any other format or on any other material). The Data Protection Act (DPA) also gives people rights over their personal data. The Act applies in relation to current, past or prospective contacts with Essa Foundation Academies Trust (EFAT) and/ or its academies and nursery and covers members, directors and governors; other volunteers, all employees; nursery children, pupils/students, parents/carers; and suppliers/ contractors. The Protection of Freedoms Act 2012 covers the use of biometric systems in schools/academies e.g. cashless catering systems using finger print technology. This policy should be read in conjunction with the trust s Freedom of Information Act Policy. POLICY STATEMENT: EFAT will treat personal information lawfully and correctly in compliance with the DPA and the associated Codes of Practice. The trust regards the proper treatment of personal information as very important in maintaining confidence with Data Protection Act Policy, EFAT Version 6 Final, May Draft 3
4 employees, nursery children, pupils/students and their families, directors, governors, other volunteers, and suppliers/ contractors. EFAT will achieve compliance through ensuring that responsibility and accountability is clear, robust procedures exist, and appropriate training is provided. EFAT will: Comply with individuals rights; Process data in accordance with the eight Data Protection Principles; and Meet any notification requirements of the Information Commissioner. RESPONSIBILITIES: EFAT as the corporate body is the Data Controller and will be registered with the ICO. The name of each academy and Essa Nursery will appear in the public register of data collectors. The trust has overall responsibility for ensuring that records are maintained, including security and access arrangements in accordance with regulations. The trust s Board has delegated to Local Governing Bodies (LGBs) responsibility for ensuring that this Data Protection Policy is implemented throughout each academy. The Trust s Board has delegated to the Management Team Director (MTD) responsibility for ensuring that this Data Protection Policy is implemented throughout Support Services. The Nursery Management Committee is responsible for ensuring that this Data Protection Policy is implemented throughout the nursery. The trust has delegated operational responsibility for ensuring that the DPA requirements are enforced, and the trust s DPA policy and procedures are implemented, in all academies, in Essa Nursery, and the across the trust to the Data Manager within Support Services. The Data Manager will also deal with the day-to-day matters relating to data protection. Across EFAT, all data users must be identified. include: These will be numerous and will Teaching staff Nursery staff Some support staff SENCOs Administrators Data Protection Act Policy, EFAT Version 6 Final, May Draft 4
5 The Data Manager will ensure that appropriate training is provided / sourced for all data processors in their area of responsibility. The Data Manager will also provide periodic information sessions for the Board of Directors, Local Governing Bodies, the Nursery Management Committee, and senior leaders throughout the trust to ensure that they are aware of the importance of processing personal information properly and observing individual access rights. NOTIFICATIONS: The Data Manager is responsible for completing any notifications required by the Information Commissioner. In each academy/ nursery data processors are required to support this process by promptly providing information requested to complete the notification. DATA PROCESSING: Processing includes obtaining, recording, organising, amending, retrieving, using, disclosing, erasing, destroying or transferring the data. The data processors must ensure that any processing of personal data within their area of responsibility including where this is processed by a third party on behalf of the trust or an individual academy/ nursery complies with DPA requirements as follows: PERSONAL DATA: The Information Commissioner interprets the term personal data widely as relating to a living individual, who can be identified from the data or other available data. Personal data includes facts, opinions or intentions relating to the individual when held on a relevant filing system, accessible record or computer. Opinions might include performance appraisal data. Personal data tends to be biographical, affects the person s privacy, or be primarily about the individual. Examples include: Name; Address; Date of Birth; Marital Status. INFORMING PARENTS/CARERS ABOUT HOW THEIR DATA IS USED. A standard fair processing/ privacy notice for each academy and the nursery is attached as Annexes 1, 2, and 3 to this policy and should be given to the Data Protection Act Policy, EFAT Version 6 Final, May Draft 5
6 parent/carer of each child at their point of entry to the academy/ nursery. If the purpose for processing the data changes: parents/carers must be informed. MAKING A REQUEST FOR INFORMATION- BY A PARENT/CARER OR STUDENT Requests to see information that is held about parents/carers and/or your child should be made in writing to the Principal of the academy or to the Nursery Manager, as applicable. Information about this is set out in Annex 4. INFORMING EMPLOYEES, DIRECTORS, GOVERNORS, OTHER VOLUNTEERS, AND CONTRACTORS/SUPPLIERS ABOUT HOW THEIR DATA IS USED All employees will be informed about how their personal data is used via data protection clauses in their contracts of employment. The type of information that an employer can keep and how it could be used is set out in Annex 5. Publication of Academy/ Nursery information- some information about some staff may be published on the Academy s/ Nursery s website to meet the legitimate needs of parents/ carers and others seeking to make contact with the Academy/ Nursery. Directors, governors, and other volunteers will be informed about what data may be kept and how it could be used on induction. All contractors/ suppliers will be informed through their contracts. MAKING A REQUEST FOR INFORMATION- BY AN EMPLOYEE AND AGENCY STAFF Requests to see information that is held about employees should be made in writing to the Principal of the academy in which you work, to the Nursery Manager, or to the Management Team Director for employees working in the Support Services. Information about this is set out in Annex 6. MAKING A REQUEST FOR INFORMATION- BY A DIRECTOR/GOVERNOR, OTHER VOLUNTEERS AND CONTRACTORS Requests to see information that is held about directors/ governors, other volunteers, and contractors should be made in writing to the Management Team Director or the Data Manager. Information about this is set out in Annex 6. COMPLAINTS: Complaints will be dealt with in line with the trust s complaints procedure. A copy of the complaints procedure is available on the trust s/ academy s/ nursery s website or from the academy/ nursery. All complaints should be directed to the Principal/Nursery Manager or Chair of the Local Governing Body/ Nursery Data Protection Act Policy, EFAT Version 6 Final, May Draft 6
7 Management Committee for investigation and resolution where possible under the trust s complaints procedure. Employees should raise their concerns with the Principal/ Nursery Manager or Management Team Director, as appropriate, for investigation and resolution under the trust s grievance procedures. Directors, governors, other volunteers and contractors should raise any concerns with the Management Team Director or Data Manager for investigation and resolution under the trust s Code of Practice for Members, Directors, and Governors. The Information Commissioner is responsible for monitoring and enforcing the DPA, and he / she can investigate, where necessary issue an advisory or enforcement notice, and in some cases prosecute. The Information Commissioner requires that complaints are first brought to the attention of the trust/ academy/ nursery, to provide an opportunity for investigation and resolution. A parent/carer who wishes to pursue the complaint further should contact the Information Commissioner s Office at or call the ICO s helpline- telephone Data Protection Act Policy, EFAT Version 6 Final, May Draft 7
8 ANNEX 1 PRIVACY NOTICE & FAIR PROCESSING NOTICE FOR STUDENTS, PARENTS AND CARERSTO BE GIVEN TO ALL PARENTS/CARERS WHEN A STUDENT FIRST ENTERS THE ACADEMY The Essa Foundation Academies Trust is the Data Controller for the purposes of the Data Protection Act Essa Academy collects information from you and your child and may receive information from your child s previous school/ academy and other agencies. We hold this personal data and use it to: Support teaching and learning; Monitor and report on progress; Provide appropriate pastoral care; and Assess how well your child s academy is doing. This information includes contact details, national curriculum assessment results, attendance information, where they go after they leave us and personal characteristics such as ethnic group, special educational needs and any relevant medical information. If your child is enrolling for post 14 qualifications we will be provided with their unique learner number by the Learning Records Service and may also obtain from them details of any learning or qualifications undertaken Once your child is aged 13 or over, we are required to pass on certain information to providers of youth support services in our area. This is the local authority support service for young people aged 13 to 19 in England. We must provide your address and that of your child, together with their name and date of birth and any further information relevant to the support services role. However, you or your child (if they are over 16) can ask that no information beyond their name, address, date of birth and your address, be passed to the support service. Please inform Essa Academy if you wish to opt-out of this arrangement. For more information about young peoples services, please go to the National Careers Service page at Essa Academy has numerous CCTV cameras located on our site, both internally and externally. These cameras are used solely for the purposes of safety, security and crime prevention. Recorded images are stored and viewed securely and data is not retained for any longer than is necessary for the purposes stated. Data Protection Act Policy, EFAT Version 6 Final, May Draft 8
9 Parents will be asked to give their permission if photographs/ videos are to be taken of students. Essa Academy also shares some personal information with ParentPay and Easitrace acting as data processors to provide a cashless catering system for the academy. This organisation is registered as a data processor with the Information Commissioner s Office. Essa Foundation Academies Trust remains the data controller and personal information will only be used for the purpose of the cashless catering system. We will not share any other personal details without your permission. We will not give any information to anyone outside the trust/academy without your consent unless the law requires us to do so. We may pass on personal information for child protection reasons or to other relevant agencies or partners. We are required by law to pass some information to the Department for Education (DfE), the Local Authority (LA) and other statutory bodies. If you want to see a copy of the information we hold and share then please contact the Principal. If you require more information about how the Local Authority (LA) and/or DfE store and use the information, then please go to the following website: or If you are unable to access these websites please contact the LA or DfE as follows: Information Management Unit Children s and Adult Services Bolton Council, 1 st Floor, Town Hall Bolton, BL1 1UA Website: ec.imu@bolton.gov.uk Telephone: Ministerial and Public Communications Unit Department for Education Piccadilly Gate Store Street Manchester M1 2WD Website: Tel: Data Protection Act Policy, EFAT Version 6 Final, May Draft 9
10 ANNEX 2 PRIVACY NOTICE & FAIR PROCESSING NOTICE FOR PARENTS AND CARERS- TO BE GIVEN TO ALL PARENTS/CARERS WHEN A PUPIL FIRST ENTERS THE ACADEMY The Essa Foundation Academies Trust is the Data Controller for the purposes of the Data Protection Act Essa Primary Academy collects information from you and your child and may receive information from your child s previous school/ academy and other agencies. We hold this personal data and use it to: Support teaching and learning; Monitor and report on progress; Provide appropriate pastoral care; and Assess how well your child s academy is doing. This information includes contact details, national curriculum assessment results, attendance information, where they go after they leave us and personal characteristics such as ethnic group, special educational needs and any relevant medical information. Essa Primary Academy also shares some personal information with ParentPay acting as data processors for the academy. This organisation is registered as a data processor with the Information Commissioner s Office. Essa Foundation Academies Trust remains the data controller and personal information will only be used for the purpose stated in the academy. We will not share any other personal details without your permission. Parents will be asked to give their permission if photographs/ videos are to be taken of students. We will not give any information to anyone outside the Trust/Academy without your consent unless the law requires us to do so. We may pass on personal information for child protection reasons or to other relevant agencies or partners. We are required by law to pass some information to the Department for Education (DfE), the Local Authority (LA) and other statutory bodies. If you want to see a copy of the information we hold and share then please contact the Principal. Data Protection Act Policy, EFAT Version 6 Final, May Draft 10
11 If you require more information about how the Local Authority (LA) and/or DfE store and use the information, then please go to the following website: or If you are unable to access these websites please contact the LA or DfE as follows: Information Management Unit Children s and Adult Services Bolton Council, 1 st Floor, Town Hall Bolton, BL1 1UA Website: ec.imu@bolton.gov.uk Telephone: Ministerial and Public Communications Unit Department for Education Piccadilly Gate Store Street Manchester M1 2WD Website: Tel: Data Protection Act Policy, EFAT Version 6 Final, May Draft 11
12 ANNEX 3 PRIVACY NOTICE & FAIR PROCESSING NOTICE FOR PARENTS AND CARERS- TO BE GIVEN TO ALL PARENTS/CARERS WHEN A CHILD FIRST ENTERS THE NURSERY The Essa Foundation Academies Trust is the Data Controller for the purposes of the Data Protection Act Essa Nursery collects information from you and your child and may receive information from your child s previous nursery and other agencies. We hold this personal data and use it to: Support teaching and learning; Monitor and report on progress; Provide appropriate pastoral care; and Assess how well your child s nursery is doing. This information includes contact details, attendance information, where they go after they leave us and personal characteristics such as ethnic group, special educational needs and any relevant medical information. Essa Foundation Academies Trust remains the data controller and personal information will only be used for the purpose stated in the nursery. We will not share any other personal details without your permission. Parents will be asked to give their permission if photographs/ videos are to be taken of students. We will not give any information to anyone outside the Trust/Nursery without your consent unless the law requires us to do so. We may pass on personal information for child protection reasons or to other relevant agencies or partners. We are required by law to pass some information to the Department for Education (DfE), the Local Authority (LA) and other statutory bodies. If you want to see a copy of the information we hold and share then please contact the Principal. Data Protection Act Policy, EFAT Version 6 Final, May Draft 12
13 If you require more information about how the Local Authority (LA) and/or DfE store and use the information, then please go to the following website: or If you are unable to access these websites please contact the LA or DfE as follows: Information Management Unit Children s and Adult Services Bolton Council, 1 st Floor, Town Hall Bolton, BL1 1UA Website: ec.imu@bolton.gov.uk Telephone: Ministerial and Public Communications Unit Department for Education Piccadilly Gate Store Street Manchester M1 2WD Website: Tel: Data Protection Act Policy, EFAT Version 6 Final, May Draft 13
14 ANNEX 4 MAKING A REQUEST FOR INFORMATION (A SUBJECT ACCESS REQUEST) - BY A PARENT/ CARER OR STUDENT Requests must be made in writing to the Principal/ Nursery Manager. You will be asked to provide proof of identity- by providing for example, a passport, birth certificate, marriage certificate, utility bills for current address. Requests can be made by a parent/carer. Requests can be made by a pupil/student dependent on age and if he/she is deemed capable of making and understanding the request and the nature of the request. You can make the request through a solicitor or adviser provided that you have signed an authorisation for this person to act for you. The academy/ nursery will make a charge of for the provision of information. This should be paid at the time the request is made. If the information requested is only the educational record viewing will be free but a charge, not exceeding the cost of copying information can be made by the academy/ nursery. A response will be made within 40 days. The academy/ nursery is permitted to withhold some information- all information requests will be reviewed in line with this before being provided. You will be informed if the information is exempt and cannot be provided. The academy/nursery may need to get permission for a third party, e.g. the LA or police before it can disclose some information. You can ask for the information to be given to you at the academy/nursery, or for a member of staff to explain it to you, or you can ask for it to be posted to you. Data Protection Act Policy, EFAT Version 6 Final, May Draft 14
15 ANNEX 5 PRIVACY NOTICE & FAIR PROCESSING NOTICE FOR EMPLOYEES The Essa Foundation Academies Trust is the Data Controller for the purposes of the Data Protection Act The trust collects information from you as your employer and may receive information from your previous employers, education and training providers, and other agencies. Employees personal data will be kept safe and secure and up to date. Records will not be kept any longer than is necessary and will follow the rules on data protection. Publication of academy/ nursery information- some information about some staff may be published on the academy / nursery s website to meet the legitimate needs of parents/ carers and others seeking to make contact with the academy/nursery. If you ask about the information/ data kept about you the trust will have 40 days to provide a copy of the information. Data kept by the trust as an employer includes, but is not exhaustive: Name Address Date of birth Sex Education and qualifications Work experience National insurance number Tax code Details of any known disability Emergency contact details Employment history with the trust Employment terms and conditions( e.g. pay, hours of work, holidays, benefits, absence) Any accidents connected to work Any training undertaken Any disciplinary action Checks on fitness to work with children Employees have the right to be told; What records are kept and how they are used The confidentiality of the records How these records can help with their training and development at work. We will not give any information about you to anyone outside the trust/academy/nursery without your consent unless the law requires us to do so. We are required by law to pass some information to the Department for Education (DfE). Data Protection Act Policy, EFAT Version 6 Final, May Draft 15
16 If you require more information about how DfE store and use the information, then please go to the following website: If you are unable to access this website please contact the DfE as follows: Ministerial and Public Communications Unit Department for Education Piccadilly Gate Store Street Manchester M1 2WD Telephone: Data Protection Act Policy, EFAT Version 6 Final, May Draft 16
17 ANNEX 6 MAKING A REQUEST FOR INFORMATION (A SUBJECT ACCESS REQUEST) - BY AN EMPLOYEE, DIRECTOR, GOVERNOR, OTHER VOLUNTEERS, AND CONTRACTORS Requests must be made in writing to the Principal/ Nursery Manager or Management Team Director, as appropriate. You may be asked to provide proof of identity- for example, by providing a passport, birth certificate, marriage certificate, utility bills for current address etc. You can make the request through a solicitor or adviser provided that you have signed an authorisation for this person to act for you. The trust may make a charge of for the provision of information. This should be paid at the time the request is made. If the information requested is only the employment record viewing will be free but a charge, not exceeding the cost of copying information can be made by the trust. A response will be made within 40 days. The trust is permitted to withhold some information- all information requests will be reviewed in line with this before being provided. You will be informed if the information is exempt and cannot be provided. The trust may need to get permission for a third party, e.g. the LA or police before it can disclose some information. You can ask for the information to be given to you at the trust s premises, or for a member of staff to explain it to you, or you can ask for it to be posted to you. Data Protection Act Policy, EFAT Version 6 Final, May Draft 17
18 ANNEX 7 OPERATIONAL PROCEDURES- ALL DATA HANDLERS 1. Implementing a risk based range of data security measures. Advice and support should be sought from the Data Manager where necessary. However the following is considered to be best practice: Maintaining data security means guaranteeing the confidentiality, integrity and availability of the personal data, defined as follows: Confidentiality means that only people who are authorised to use the data can access it. Integrity means that personal data should be accurate and suitable for the purpose for which is it processed. Availability means that authorised users should be able to access the data if they need it for authorised purposes. Personal data should therefore be stored on the trust s central / networked computer system instead of individual PCs. Security procedures include: Entry controls. Any stranger seen in entry-controlled areas should be reported. Computerised data should be coded, encrypted, or password protected, and backed up. If electronic removable storage media is used this should be kept in lockable drawers/cupboards. Secure lockable desks and cupboards. Desks and cupboards should be kept locked if they hold confidential information of any kind. (Personal information is always considered confidential.) Methods of disposal. Paper documents should be shredded. Computer discs/ memory sticks/ hard drives should be physically destroyed when they are no longer required. Equipment. Data users should ensure that passers-by cannot see confidential information on their screens and that they log off from their PC when it is left unattended. 2. Ensuring that where personal data is shared with third parties or processed by them on behalf of EFAT or an academy/ nursery, appropriate agreements are in place to secure DPA compliant processing. Advice and support should be sought from the Data Manager where necessary. Retention of data the trust/ academy has a duty to retain some personal information/ data about employees and nursery children/pupils/students for some time after leaving the academy/ nursery, or the trust s employment, mainly for legal reasons or to provide references or academic transcripts. Data Protection Act Policy, EFAT Version 6 Final, May Draft 18
19 3. All personal data is processed in accordance with the eight data protection principles: Data to be fair and lawful Processed for limited purposes Adequate, relevant and not excessive Accurate and up to date Kept no longer than is necessary In line with individuals rights (cannot be supplied to any third party for direct marketing purposes) Secure against unlawful processing and accidental loss / damage Only transferred outside the EU in limited circumstances. 4. In the case of sensitive data, it can only be processed where the individual has given specific consent, it is essential for employment purposes, it is necessary to protect the vital interests of an individual (where life is at risk) or is necessary for medical, legal, justice or government reasons. Sensitive data includes: Racial / ethnic origin TU membership Criminal convictions and offences Political opinions Religious beliefs Sexual life Physical and mental health 5. Responding to requests for information-subject Access Requests: (See flowchart at Annex 8) Individuals have a number of rights with regards to their personal data including the right to know what is kept, inspect and / or be given a copy of their data, to correct any inaccurate information held and prevent any processing likely to cause distress to themselves or anyone else. They can claim compensation for distress caused by breaches of the DPA. Under the DPA individuals may submit a formal written request- see Annexes 4 & 6 for access to their personal data which might be limited to specific documents / areas or which may require a full search for information held. They may make this request through a solicitor or adviser provided that they have signed an authorisation for this person to act on their behalf. N.B: Telephone callers requesting information under the DPA should be asked to put their request in writing. Data Protection Act Policy, EFAT Version 6 Final, May Draft 19
20 Where such a request is made, the individual has a right to the following within 40 calendar days of their request: A description of the data held Told what the data is used for and who it may be given to Provided with a copy of their personal information held on a computer and in most manual filing systems Permitted to see their data and correct any errors in it. A fee of 10 is payable by the individual and should be requested before copies of the data are supplied. If the request is unclear, then the individual should be asked for clarification and the 40 day timeline is suspended until clarification is received. Before supplying personal data in response to a request, ensure that proof of identity is supplied e.g. passport / driving license to avoid identity fraud. An address is not proof of identity. The applicant is actually entitled to the information requested and not to specific documents containing it. It is therefore preferable to extract the information where the documents contain third party personal data which should not be disclosed unless it is already in the public domain or they have consented to its release. In responding to requests, personal data should not be ed. The necessary security of its transfer will vary according to the sensitivity of the data. Where the request will require an overseas search for information, where it appears unreasonable, or it is a repeated request, advice should be sought from the Data Manager. EXEMPTIONS: There are a small number of exemptions which may apply to requests in limited circumstances where a response may lead to prejudice to any of the following Negotiations with the requester; Management forecasts; Confidential references given by the trust/academ/ nursery (but not ones provided to the trust/academy/ nursery); Information used for research, historical or statistical purposes; Information covered by legal professional privilege; Crime prevention and detection. If you think that any of these exemptions might apply to a request received, then contact the Data Manager for advice. Data Protection Act Policy, EFAT Version 6 Final, May Draft 20
21 ANNEX 8 Data Protection Act Policy, EFAT Version 6 Final, May Draft 21
Data Management and Protection Policy
Data Management and Protection Policy Approved by Governor committee: Finance and Audit Date to be reviewed: June 2018 Responsibility of : Director of Finance and Operations Date ratified by Governing
More informationDATA PROTECTION POLICY 2016
DATA PROTECTION POLICY 2016 ADOPTED FROM BRADFORD METROPOLITAIN COUNCIL MODEL POLICY AUTUMN 2016 To be agreed by Governors on; 17/10/16 Signed by Chair of Governors: Statutory policy: Yes Frequency of
More informationSt Mark s Church of England Academy Data Protection Policy
St Mark s Church of England Academy Data Protection Policy 1 Contents Purpose:... Error! Bookmark not defined. Scope:... Error! Bookmark not defined. Procedure:... Error! Bookmark not defined. Definitions:...
More informationData Protection Policy
Data Protection Policy This policy will be reviewed by the Trust Board three yearly or amended if there are any changes in legislation before that time. Date of last review: Autumn 2018 Date of next review:
More informationDATA PROTECTION POLICY
1. Introduction This policy is intended to provide information about how the School will use (or process ) personal data about individuals including: Current, past and prospective pupils; Parents, carers
More informationData Protection Policy
THE CIPPENHAM SCHOOLS TRUST Data Protection Policy *Date for revision: Summer Term 2018 Responsibility for policy: Responsibility for operational: Trustees Trustees Reviewed by Directors: *subject to any
More informationData Protection. Policy
Data Protection Policy Why do we need this policy? What does the policy apply to? Which parts of SQA are affected? SQA is committed to adopting best practice in protecting the personal information of all
More informationData Protection Policy
Data Protection Policy (Data Protection Act 1998) (This policy will be updated to incorporate GDPR by May 2018) Page 1 of 9 Data Protection Policy 1 Statement of Policy The Constellation Trust needs to
More informationData Protection. Document Detail Type of Document (Stat Policy/Policy/Procedure) Category of Document (Trust HR-Fin-FM-Gen/Academy) General
Data Protection Document Detail Type of Document (Stat Policy/Policy/Procedure) Policy Category of Document (Trust HR-Fin-FM-Gen/Academy) General Index reference number Approved 26/04/18 Approved by Trust
More informationData Protection Policy
Data Protection Policy Name of Chair: Mr David Mann Name of Headteacher: Mrs Eileen Bissell Name of person Responsible: Mrs Eileen Bissell Adopted and Agreed on: October 2015 Date of Review: October 2018
More informationData Protection Policy for the Grimsby Institute of Further & Higher Education
Data Protection Policy for the Grimsby Institute of Further & Higher Education Data Protection Policy Change Control Version: V1.1 New or Replacement: Approved by: Replacement Executive Management Team
More informationDATA PROTECTION POLICY
Registered Address: Mountdale Gardens, Leigh-on-Sea, Essex SS9 4AW Executive Headteacher: Mrs. J. Mullan Telephone: (01702) 524193 Fax: (01702) 526761 DATA PROTECTION POLICY SEN TRUST SOUTHEND KINGSDOWN
More informationDATA PROTECTION POLICY
Registered Address: Mountdale Gardens, Leigh-on-Sea, Essex SS9 4AW Executive Headteacher: Mrs. J. Mullan Telephone: (01702) 524193 Fax: (01702) 526761 DATA PROTECTION POLICY SEN TRUST SOUTHEND KINGSDOWN
More informationParent / Carer Privacy Notice
Document No. PP Issue No. 1 Issue Date: 2018-05-24 Renewal Date: 2019-05-24 Originator: Kate Frith Responsibility: Director of Resources 1. Policy statement Parent / Carer Privacy Notice We are Fullhurst
More informationData Protection Policy
Data Protection Policy Reviewed by: Reviewed when Resources Committee As required Date written and last reviewed July 2018 Source and date of model policy, if applicable n/a Contents 1. Aims... 2 2. Legislation
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY APRIL 2018 Attendance Policy and Procedures (Pupils) (P3/Policies) Updated January 2018 Page 1 of 11 Title Summary Purpose Operational Date April 2018 Next Review Date April 2019
More informationDATA PROTECTION POLICY 2018
DATA PROTECTION POLICY 2018 Amesbury Baptist Church is committed to protecting all information that we handle about people we support and work with, and to respecting people s rights around how their information
More informationEARLS HALL BAPTIST CHURCH DATA PROTECTION POLICY
EARLS HALL BAPTIST CHURCH DATA PROTECTION POLICY Adopted: 5 June 2018 1 Earls Hall Baptist Church is committed to protecting all information that we handle about people we support and work with, and to
More informationWe reserve the right to update this privacy notice at any time. Please check our website from time to time for any changes we may make.
What is the purpose of this document? NORTHERN IRELAND SCREEN COMMISSION (Company Number NI031997) whose registered office is at 3 rd Floor Alfred House, 21 Alfred Street, Belfast, BT2 8ED is committed
More informationLAST UPDATED June 11, 2018 DATA PROTECTION POLICY. International Foundation for Electoral Systems
LAST UPDATED June 11, 2018 DATA PROTECTION POLICY International Foundation for Electoral Systems 1. Purpose 1.1. International Foundation for Electoral Systems is committed to complying with privacy and
More informationPOLICY ON INFORMATION, SECURITY & DATA PROTECTION
POLICY ON INFORMATION, SECURITY & DATA PROTECTION As a recruitment company, First Recruitment is a data controller. This means it processes personal data about its work seekers, individual client contacts
More informationData Protection Policy
Policy Current Status Operational Last Review: May 2018 Responsibility for Review: Director of Administration, Contracts and Health Next Review: September 2019 Internal Approval: & Safety SLT Originated:
More informationData Protection Policy & Procedures
Data Protection Policy & Procedures Scope In this document, the terms we, us, our and/or Clear Sky refer to Clear Sky Children s Charity. The term you and/or your refer to all employees of Clear Sky, who
More informationQueen s Croft High School DATA PROTECTION POLICY AND PRIVACY NOTICE
Queen s Croft High School DATA PROTECTION POLICY AND PRIVACY NOTICE Prepared by: Peter Hawksworth, Headteacher Checked by: Jackie Hesslegrave, Business Manager Adopted by Governors: November 2017 Review
More informationTHE PORTSMOUTH GRAMMAR SCHOOL
THE PORTSMOUTH GRAMMAR SCHOOL STAFF PRIVACY NOTICE In the course of your employment, engagement or other basis of work undertaken for the school, we will collect, use and hold ( process ) personal data
More informationScottish Charity Number SC Dingwall Baptist Church DATA PROTECTION POLICY
Dingwall Baptist Church DATA PROTECTION POLICY Adopted: By Trustees Dingwall Baptist Church May 2018 1 Dingwall Baptist Church is committed to protecting all information that we handle about people we
More informationData protection policy including staff and student privacy notices March 2017
Data protection policy including staff and student privacy notices March 2017 Office use Published: March 2017 Next review: May 2018 Statutory/non: Statutory Lead: Alison Elway, Company Secretary/Head
More informationPRIVACY NOTICE FOR PARENTS/CARERS OF PUPILS ATTENDING WARREN DELL PRIMARY SCHOOL
Warren Dell Primary School PRIVACY NOTICE FOR PARENTS/CARERS OF PUPILS ATTENDING WARREN DELL PRIMARY SCHOOL Warren Dell Primary School collects data and information about parents/carers of our pupils so
More informationData Protection/ Information Security Policy
Data Protection/ Information Security Policy Date Policy Reviewed 27 th April 2016 Date Passed to Governors: 27 th April 2016 Approved by Governors: 7 th June 2016 Date of Next Review: June 2018 Data Protection
More informationLIFE STYLE CARE PLC. Privacy Statement for Employees. August 2018
LIFE STYLE CARE PLC Privacy Statement for Employees August 2018 Key points Why we use your personal data: We typically use your personal information for purposes related to your employment relationship
More informationRECORD OF PROCESSING ACTIVITIES ST CUTHBERT S CATHOLIC HIGH SCHOOL
RECORD OF PROCESSING ACTIVITIES ST CUTHBERT S CATHOLIC HIGH SCHOOL Created: May 2018 Last Reviewed: May 2018 This record of processing activities describes how St Cuthbert s Catholic High School processes
More informationSt Michael s CE Primary School Data Protection Policy
St Michael s CE Primary School Data Protection Policy We will prepare the children at St. Michael's school for life, by giving them the opportunity to fulfil their potential within a happy caring Christian
More informationHuman Resources. Data Protection Policy IMS HRD 012. Version: 1.00
Human Resources Data Protection Policy IMS HRD 012 Version: 1.00 Disclaimer While we do our best to ensure that the information contained in this document is accurate and up to date when it was printed
More informationThe template uses the terms students / pupils to refer to the children or young people at the institution.
This document is for advice and guidance purposes only. It is anticipated that schools / colleges will use this advice alongside their own data protection policy. This document is not intended to provide
More informationSection a What this Policy is for Policy Statement. 2. Why this policy is important... 3
Norwich Central Baptist Church DATA PROTECTION POLICY Adopted: May.2018 Norwich Central Baptist Church (NCBC) is committed to protecting all information that we handle about people we support and work
More informationSAFFRON WALDEN COMMUNITY CHURCH DATA PROTECTION POLICY. Adopted: [ ]
SAFFRON WALDEN COMMUNITY CHURCH DATA PROTECTION POLICY Adopted: [17-04-2018] 1 SAFFRON WALDEN COMMUNITY CHURCH is committed to protecting all information that we handle about people we support and work
More informationBaptist Union of Scotland DATA PROTECTION POLICY
Baptist Union of Scotland DATA PROTECTION POLICY Adopted: May 2018 1 1.The Baptist Union of Scotland 48, Speirs Wharf, Glasgow G4 9TH (Charity Registration SC004960) is committed to protecting all information
More informationNEW LIFE BAPTIST CHURCH NORTHALLERTON DATA PROTECTION POLICY. Adopted: 20 June 2018 To be reviewed: June 2021
NEW LIFE BAPTIST CHURCH NORTHALLERTON DATA PROTECTION POLICY Adopted: 20 June 2018 To be reviewed: June 2021 NEW LIFE BAPTIST CHURCH, NORTHALLERTON (referred to in this policy as NLBC) is committed to
More informationPrivacy Notice (How we use school workforce information)
Privacy Notice (How we use school workforce information) We process personal data relating to those we employ to work at, or otherwise engage to work at, our school. This is for employment purposes to
More informationNetwork Rail internal privacy notice
Network Rail internal privacy notice Introduction This privacy notice describes in detail how Network Rail Infrastructure Limited (NR) and its subsidiaries use your personal information when you become
More informationData Protection Policy
Data Protection Policy University of London Data Protection UoL website link: http://www.london.ac.uk/238.html Email: records.managament@london.ac.uk Contents 1 Policy statement... 3 2 Introduction and
More informationDixons Academies Charitable Trust. Pupils, parents and staff privacy notice
Dixons Academies Charitable Trust Pupils, parents and staff privacy notice Contents: Privacy notice for parents/carers page 3 Privacy notice for pupils.page 7 Privacy notice for staff page 11 1. Privacy
More informationPRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS ATTENDING Greenside School
PRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS ATTENDING Greenside School Greenside School collects data and information about parents / carers of our pupils so that we can operate effectively as a school.
More informationEDWARDS COMMERCIAL CLEANING SERVICES LTD and EDWARDS COMMERCIAL CLEANING (NORTH) LTD Data Protection Policy for Employees, Workers and Consultants
EDWARDS COMMERCIAL CLEANING SERVICES LTD and EDWARDS COMMERCIAL CLEANING (NORTH) LTD Data Protection Policy for Employees, Workers and Consultants 1 Overview Data Protection Policy for Employees, Workers
More informationThe current version (July 2018) is derived from, and supersedes, the version published in February 2017 and earlier versions.
Page 2 of 10 Data Protection Policy Chief Information Officer Chief Information Officer Data Protection Officer The current version (July 2018) is derived from, and supersedes, the version published in
More informationLittle Gaddesden C. of E. Primary School
PRIVACY NOTICE - PARENTS AND CARERS Approved by Resources Committee 21 May 18 Approved by Governing Body 22 May 18 Review by May 20 Little Gaddesden School collects data and information about parents /
More information2.1.2 Gender, age, date of birth, marital status and nationality;
PRIVACY STATEMENT FOR THE ROMAN CATHOLIC ARCHDIOCESE OF SOUTHWARK 1 INTRODUCTION 1.1 The Roman Catholic Archdiocese of Southwark (the "Diocese") is a charity registered with the Charity Commission in England
More informationDATED. 14 th MAY 2018 GDPR PRIVACY NOTICE FOR TRUSTEES, EMPLOYEES, VISITORS, STUDENTS, CHILDREN ATTENDING
DATED 14 th MAY 2018 GDPR PRIVACY NOTICE FOR TRUSTEES, EMPLOYEES, VISITORS, STUDENTS, CHILDREN ATTENDING UNIVERSITY NURSERY PARENTS ASSOCIATION (UNPA) AND THEIR PARENTS. Compiled by For NDNA 1 st Floor
More informationHOLY TRINITY CE PRIMARY SCHOOL PRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS
HOLY TRINITY CE PRIMARY SCHOOL PRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS Holy Trinity collects data and information about parents / carers of our pupils so that we can operate effectively as a school.
More informationData Protection Employee Privacy Notice
Data Protection Employee Privacy Notice Data Protection Employee Privacy Notice Page 1 of 7 Contents 1. Introduction... 3 2. What is personal data/special categories of personal data?... 3 3. What information
More informationBrasenose College Data Protection Policy Statement v1.2
Brasenose College Data Protection Policy Statement v1.2 1. Introduction All documents referred to in this policy can be found online at the address below: https://www.bnc.ox.ac.uk/privacypolicies 1.1 Background
More informationDIGITGAIN LTD. Rectory Road, Padworth Common, West Berkshire, RG7 4JD Tel: DATED GDPR PRIVACY POLICY FOR EMPLOYEES,
DIGITGAIN LTD Rectory Road, Padworth Common, West Berkshire, RG7 4JD Tel: 0118 971 3840 DATED GDPR PRIVACY POLICY FOR EMPLOYEES, CHILDREN ATTENDING JUBILEE AND THEIR PARENTS Guidance from - Compiled by
More informationData Protection Policy
Data Protection Policy for The Astor Bannerman Group of Companies Issue Date: 3 rd January 2014 Version: 01 Approval History Name Department Role/Position Date approved Signature James Stuart- Smith Director
More informationHITCHIN GIRLS SCHOOL PRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS ATTENDING HITCHIN GIRLS SCHOOL
HITCHIN GIRLS SCHOOL PRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS ATTENDING HITCHIN GIRLS SCHOOL Hitchin Girls School collects data and information about parents / carers of our pupils so that we can
More informationTrinity is committed to protecting the privacy and security of personal data.
This privacy notice applies data processing activities undertaken by Trinity College for security and monitoring relating to staff, students and visitors to Trinity premises including CCTV, other security
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY Document Control History Title Data Protection Policy Version no. 1.0 Date of publication May 2018 Author(s) Amanda Cramb, HR Manager Next review date May 2021 Page 1 Introduction
More informationDepending on the circumstances, we may collect, store, and use the following categories of personal information about you:
Ignata Group Data Protection / Privacy Notice What is the purpose of this document? Ignata is committed to protecting the privacy and security of your personal information. This privacy notice describes
More informationGDPR P4 Privacy Policy Statement & Guidance for Employees and External Providers
Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate
More informationData protection (GDPR) policy
Data protection (GDPR) policy January 2018 Version: 1.0 NHS fraud. Spot it. Report it. Together we stop it. Version control Version Name Date Comment 1.0 Trevor Duplessis 22/01/18 Review due Dec 2018 OFFICIAL
More informationRoundwood Primary School. Privacy Notice Parents
Roundwood Primary School Privacy Notice - Parents Name of Policy Privacy Notice Parents Date of adoption April 2018 Date of next review April 2020 Governing Body Committee Responsible Resources Member
More informationGDPR DATA PROCESSING NOTICE FOR FS1 RECRUITMENT UK LTD FOR APPLICANTS AND WORKERS
GDPR DATA PROCESSING NOTICE FOR FS1 RECRUITMENT UK LTD FOR APPLICANTS AND WORKERS What is the purpose of this document? FS1 Recruitment UK Ltd is committed to protecting the privacy and security of your
More informationDouai Abbey Parishes Trust
PRIVACY NOTICE FOR DOUAI ABBEY PARISHES TRUST (DAPT) 1 INTRODUCTION 1.1 Douai Abbey Parishes Trust (DAPT) (the "Trust") is a charity registered with the Charity Commission in England and Wales. Our charity
More informationThe Society of St Stephen s House Site Security and Monitoring Privacy Notice
This privacy notice applies to data processing activities undertaken by The Society of St Stephen s House for security and monitoring relating to staff, students and visitors to College premises A summary
More informationParents / Carers of Pupils Attending St Catherine s C of E Primary School Privacy Notice
Parents / Carers of Pupils Attending St Catherine s C of E Primary School Privacy Notice Created 15th May 2018 PRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS ATTENDING ST CATHERINE S C OF E PRIMARY SCHOOL
More informationThis privacy notice applies to attendees, organisers and others involved in Merton College s conferences and events
This privacy notice applies to attendees, organisers and others involved in Merton College s conferences and events A summary of what this notice explains Merton College is committed to protecting the
More informationGDPR Policy of Lovedaycare Nursery
GDPR Policy of Lovedaycare Nursery WHAT IS THE PURPOSE OF THIS DOCUMENT? DATED 24 May 2018 GDPR PRIVACY NOTICE FOR EMPLOYEES, CHILDREN ATTENDING LOVEDAYCARE LTD AND THEIR PARENTS Lovedaycare Ltd is a company
More informationThis personal information must be dealt with properly, with appropriate safeguards in place to ensure the rights and freedoms of data subjects.
BELFAST ROYAL ACADEMY Data Protection Policy Introduction Belfast Royal Academy recognises and accepts its responsibilities as set out in the Data Protection Act 1998. The School will take all reasonable
More informationBRADFORD DIOCESAN ACADEMIES TRUST
BRADFORD DIOCESAN ACADEMIES TRUST PRIVACY NOTICE - WORKFORCE Issued: April 2018 Next Review Due: July 2019 Page 1 of 6 Privacy Notice (How we use school workforce information) What is the purpose of this
More informationData Protection Policy
Reference: Date Approved: April 2015 Approving Body: Board of Trustees Implementation Date: August 2015 Supersedes: 2.0 Stakeholder groups Governance Committee, Board of Trustees consulted: Target Audience:
More informationData Protection Policy.
Data Protection Policy. The Leonardo Trust needs to keep certain information on its Employees, Volunteers, Service Users (clients) and Trustees to carry out its day to day operations, to meet its objectives
More informationDATA PROTECTION POLICY
DATA PROTECTION POLICY Mission Statement WeST holds a deep seated belief in education and lifelong learning. Effective collaboration, mutual support and professional challenge will underpin our quest to
More informationSt Laurence s Primary School. Privacy notices GDPR compliant
St Laurence s Primary School Privacy notices GDPR compliant Contents: Privacy notice for parents/carers page 2 Privacy notice for pupils page 7 Privacy notice for staff... page 12 1. Privacy notice for
More informationTHE COURTYARD Privacy Notice Policy
THE COURTYARD Privacy Notice Policy The Courtyard aims to offer an outstanding educational and social provision that will equip our students with the skills and experiences needed to discover and live
More informationGeneral Optical Council. Data Protection Policy
General Optical Council Data Protection Policy Authors: Lisa Sparkes Version: 1.2 Status: Live Date: September 2013 Review Date: September 2014 Location: Internet / Intranet Document History Version Date
More informationDATA PROTECTION POLICY
APPENDIX. DATA PROTECTION POLICY Document Status Author Director of Registry Services (Data) Date of Origin 27 th July 2011 This Version July 2014 Review requirements Date of next review July 2016 Approval
More informationDATA PROTECTION POLICY
LEEDS BECKETT U NIVERSI T Y DATA PROTECTION POLICY 1. INTRODUCTION 1.1 This policy document explains the framework through which the University ensures compliance with the Data Protection Act 1998 (DPA).
More informationDATA PROTECTION POLICY
Title: Data Protection Policy Ref:CP005 Version:2 Approval Body: Corporation via Audit & Risk Committee Date:24th March 2015 Review Date: 24th March 2018 Lead Person: Director, Institutional Effectiveness
More informationBrasenose College is committed to protecting the privacy and security of personal data.
This privacy notice (v1.2) applies to data processing activities undertaken by Brasenose College for security and monitoring relating to staff, students and visitors to College premises including CCTV,
More informationRECRUITMENT PRIVACY NOTICE
RECRUITMENT PRIVACY NOTICE 1. SCOPE OF PRIVACY NOTICE 1.1 Like most businesses, we hold and process a wide range of information, some of which relates to individuals who are applying to work for us. This
More informationDATED: 25/05/2018 GDPR PRIVACY NOTICE FOR HOPES & DREAMS LTD FOR EMPLOYEES, CHILDREN ATTENDING A GROUP NURSERY AND THEIR PARENTS
DATED: 25/05/2018 GDPR PRIVACY NOTICE FOR HOPES & DREAMS LTD FOR EMPLOYEES, CHILDREN ATTENDING A GROUP NURSERY AND THEIR PARENTS 1 WHAT IS THE PURPOSE OF THIS DOCUMENT? Hopes & Dreams Ltd ( the Nursery
More informationPrivacy Notice: for staff, trustees, governors and all who are engaged to work within The Evolve Trust
Privacy Notice: for staff, trustees, governors and all who are engaged to work within The Evolve Trust Use of Your Personal Data Statement Purpose: Information that we hold in relation to staff, trustees
More informationTECHNICAL RELEASE TECH 05/14BL. Data Protection Handling information provided by clients
TECHNICAL RELEASE TECH 05/14BL Data Protection Handling information provided by clients ABOUT ICAEW ICAEW is a world leading professional membership organisation that promotes, develops and supports over
More informationWorkforce Privacy Notice
Workforce Privacy Notice Policy Statement As the Lion Academy Trust, during an individual s time with us, we will use information that we gather in relation to them for various purposes. Information that
More informationSCHOOLS DATA PROTECTION POLICY. Guidance Notes for Schools
SCHOOLS DATA PROTECTION POLICY Guidance Notes for Schools Please read this policy carefully and ensure that all spaces highlighted in the document are completed prior to publication. Please ensure that
More informationPrivacy Notice for Staff
Privacy Notice for Staff This Policy is to be used across all DEMAT schools Version Date DEMAT Officer responsible for updating content DPO Date approved by DEMAT Standards & Ethos Committee 1 Apri 2018
More informationTourettes Action Data Protection Policy
Tourettes Action Data Protection Policy Effective date: 01/01/2018 Review date: 01/01/2020 Approved: Suzanne Dobson, CEO Tourettes Action Author: Pippa McClounan, Office Manager Tourettes Action Version
More informationPRIVACY NOTICE FOR STAFF
PRIVACY NOTICE FOR STAFF Under data protection law, individuals have a right to be informed about how the school uses any personal data that we hold about them. We comply with this right by providing privacy
More informationWhat personal details do we hold
UWE Staff Data Privacy Notice Introduction and purpose of this Privacy Notice The University needs to process certain information about its employees, workers and contractors for various employment related
More informationDATED MAY 2018 GDPR PRIVACY NOTICE FOR EMPLOYEES, CHILDREN ATTENDING AND THEIR PARENTS
DATED MAY 2018 GDPR PRIVACY NOTICE FOR EMPLOYEES, CHILDREN ATTENDING AND THEIR PARENTS Compiled by Stephenson s Solicitors LLP, 1 st Floor Sefton House, Northgate Close, Bolton, BL6 6PQ Kidz @ Work is
More informationData Protection Policy
Data Protection Policy Version Date Revision Author Summary of Changes 1.0 21 st May 2018 Ashleigh Morrow EXECUTIVE STATEMENT At CASTLEREAGH NURSERY SCHOOL (the School ), we believe privacy is important.
More informationRECRUITMENT PRIVACY NOTICE
SCOPE OF PRIVACY NOTICE RECRUITMENT PRIVACY NOTICE 1. Like most businesses, we hold and process a wide range of information, some of which relates to individuals who are applying to work for us. This notice
More informationPRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS ATTENDING: St Luke s School
St Luke s School Policies, Guidance & Procedures PRIVACY NOTICE FOR PARENTS / CARERS OF PUPILS ATTENDING: St Luke s School St Luke s School collects data and information about parents / carers of our pupils
More informationKEMBLE PRIMARY & SIDDINGTON CE PRIMARY SCHOOLS DATA PROTECTION & THE GENERAL DATA PROTECTION REGULATION (GDPR) POLICY
KEMBLE PRIMARY & SIDDINGTON CE PRIMARY SCHOOLS DATA PROTECTION & THE GENERAL DATA PROTECTION REGULATION (GDPR) POLICY Member of staff responsible Head teacher Governor responsible Chair of LGB & DPO Date
More informationThe Data Controller for all personal data stored and processed by Horiba MIRA Ltd is:
Page 1 of 8 Owned By: Data Protection Officer Review Due: March 2020 DATA PRIVACY POLICY It is the policy of Horiba MIRA Ltd (MIRA) that it shall at all times respect the privacy of individuals by processing
More informationVMS Software Ltd- Data Protection Privacy Policy
VMS Software Ltd- Data Protection Privacy Policy Introduction The purpose of this document is to provide a concise policy statement regarding the Data Protection obligations of VMS Software Ltd. This includes
More informationPrivacy notice for the school workforce (all staff) The personal data we hold
In line with new General Data Protection Regulations (GDPR), effective from 25 May 2018, please find below details of the privacy notice for all students in school. Privacy notice for the school workforce
More informationSt John's Primary School and Nursery. Privacy Notice for Governors How we use your information 2018/19
St John's Primary School and Nursery Privacy Notice for Governors How we use your information 2018/19 Who are we? St John s Primary School and Nursery is the data controller. This means we are responsible
More informationUoW takes measures to enable data to be restored and accessed in a timely manner in the event of a physical or technical incident.
PRIVACY NOTICE UNIVERSITY OF WARWICK We ask that you read this privacy notice carefully as it contains important information on who we are, how and why we collect, store, use and share personal information,
More informationData Protection Policy
Data Protection Policy StCH Data Protection Policy - POL 53 vs1 - July 2016 1 Document Control Table Document Title: Data Protection Policy Document Ref: POL 53 Author (name and job title): Karen Anderson,
More informationFunctional area. F Hallinan, C Abad, W Andrews Approver (s) Version 001 Effective date 25 May Privacy Notice for Emergency Contacts
The Charter Schools Educational Trust Privacy Notice for Emergency contacts GDPR compliant (Article 14 contact details given by someone other than the data subject) Contents: The personal data we hold
More information