Mapledown School and the new General Data Protection Regulation (GDPR)
Mapledown School has undergone a review to ensure compliance with the new General Data Protection Regulation (GDPR). This replaces the Data Protection Act 1998 and is the biggest change in Data Protection law in 20 years. All organisations are required to be GDPR compliant as of the 25th May 2018.
The GDPR emphasises accountability and individuals’ rights. As an organisation, we have taken action to update our current practices to conform with GDPR legislation. This includes areas such as:
- Policies and procedures to protect personal data inside and outside the school.
- Updated privacy notice to inform people about why we are collecting personal data, what we will do with it and who we intend to share it with.
- Consent for using or acquiring data requires a positive ‘opt-in’ and should be clear and concise. We must make it easy for people to withdraw consent and indicate how to do it.
We would like to inform all stakeholders in the Mapledown community, particularly our school families, that we are committed to robust data protection practice and GDPR obligations.
We have appointed a Data Protection Officer (DPO) whose role is to oversee and monitor the school’s data processing practices. The DPO operates independently to inform and advise Mapledown School and its employees about their obligations to comply with the GDPR. The DPO is the first point of contact for supervisory authorities and individuals whose data is being processed.
Mapledown School's Data Protection Officer:
Tel: 01252 516 898