The EU General Data Protection Regulation (GDPR) came into force across the European Union on 25th May 2018 and introduced the most significant changes to data protection law in two decades. Based on privacy by design and taking a risk-based approach, the GDPR has been designed to meet the requirements of the digital age.
The new regulation aims to standardise data protection laws and processing across the EU, to provide individuals with stronger and more consistent rights to access, and to better control their personal information.
Holy Rood Catholic Primary School has a range of policies and procedures to ensure compliance with GDPR. These can be found below:
In accordance with the GDPR all organisations are required to have a Data Protection Officer (DPO) who is contactable by any member of the public wishing to discuss matters relating to the use of their personal data by the organisation. Enquiries related to GDPR and Freedom of Information should be directed to: