GDPR (Data Protection)

What is GDPR?
GDPR applies to all EU member states and came into effect from 25th May 2018. GDPR affects how schools manage personal data and how personal data is protected and shared.
The EU's General Data Protection Regulation (GDPR) is the result of four years of work by the EU to bring data protection legislation into line with new, previously unforeseen ways that data is now used. Previously, the UK relied on the Data Protection Act 1998, which was enacted following the 1995 EU Data Protection Directive.
GDPR introduces tougher fines for non-compliance and breaches, and gives people more say over what companies can do with their data. It also makes data protection rules more or less identical throughout the EU.
Under the new GDPR guidelines, schools must have a named Data Protection Officer. At St Chad's, we have appointed our Data Protection officer through DDAT. Information can be found below on our Privacy Notice and Subject Access Request (SRA).