General Data Protection Regulation (GDPR)
On the 25th May 2018, the General Data Protection Regulation (GDPR) updated Data Protection legislation in order to modernise laws that protect personal data and formed parts of the new Data Protection Act 2018.
The GDPR requires public authorities and businesses to identify the lawful basis for storing personal data, audit information we already hold and take a ‘secure by design’ approach to personal data.
It also introduces new individual rights relating to personal data, such as the right to erasure or the right to rectification.
This means, amongst other things, that the data held about you must only be used for specific purpose allowed by law.
Follow the link for more information about the new GDPR regulations from the ICO website.
Reporting a Data Breach
If you believe that your personal or sensitive data has been compromised, please complete the “Reporting a Data Breach” form or write to the Academy. All reports will be given to the Data Protection Officer to investigate.
Subject Access Requests (SAR)
If you wish to obtain information that we hold for you or your child, please complete the “Subject Access Request” form or write to the Academy. Proof of ID will need to be provided in order for the request to be completed and a response will be issued within one month from the date the request is received.