GDPR stands for General Data Protection Regulation and replaces the previous Data Protection Directives that were in place. It was approved by the EU Parliament in 2016 and came into effect on 25th May 2018.
GDPR states that personal data should be ‘processed fairly & lawfully’ and ‘collected for specified, explicit and legitimate purposes’ and that an individual’s data should not be processed without their knowledge but only with their ‘explicit’ consent. GDPR covers personal data relating to individuals. St Joseph’s Catholic Primary School is committed to protecting the rights and freedoms of individuals with respect to the processing of children's, parents’, visitors’ and staff personal data.
The General Data Protection Regulation gives individuals the right to know what information is held about them. It provides a framework to ensure that personal information is handled properly.
Please find below our revised Data Protection Policy and Privacy Notice for Pupils and Parents/Carers.