As a public body providing a wide range of services, we process a significant amount of personal data relating to our pupils, parents, staff, contractors and other stakeholders.
We take our responsibilities in relation to the Data Protection Act (DPA) and the UK General Data Protection Regulation (GDPR) very seriously.
We have processes, policies and systems in place to ensure that your data is only used for legal purposes and that you are very clear about what your data will be used for. This information is included in our privacy notices below and we will always ask for specific consent (which you can withdraw at any time) if we wish to use your data for any purpose which is not already included.
We consider the data protection implications of any changes to practice or any new projects before we give them the go-ahead.
We also have in place clear procedures:
- To ensure that we can respond to any requests you might make for us to disclose the data we hold on you (known as a Subject Access Request).
- To make sure we don’t keep hold of your data for any longer than we should (known as our Retention Protocols).
- To make sure that we handle any suspected loss of data (known as a Data Breach) properly, even though this is very unlikely to happen.
We have a data protection policy in place, which also includes information about our use of biometric data and CCTV.
If you are a parent or carer at one of our academies, your first port of call for any question relating to personal data (including a Subject Access Request) should be the academy office.
Our Data Protection Officer is Alison Hope, and she can be contacted via firstname.lastname@example.org.