The General Data Protect Regulation (GDPR) is a replacement for the Data Protection Act 1998, and is designed to harmonises data protection across Europe.
- The GDPR is established to harmonise data protection across Europe for both organisation and individuals.
- It is a regulation, so therefore, enshrined in law and legally enforceable.
- Becomes applicable from 25th May 2018.
Personal data shall be:
- processed lawfully, fairly and in a transparent manner;
- collected for specified, explicit and legitimate purposes;
- adequate, relevant and limited to what is necessary;
- accurate and, where necessary, kept up to date;
- kept no longer than is necessary; and
- processed in a manner that ensures appropriate security.
Oakfield School has undertaken to meet the regulations of GDPR, and as such, has circulated to Staff, Pupils, Parents and Carers, the list of Data that we collect and store, and who we share this data with. Please see the attached pages for further details of this information.