What is the General Data Protection Regulation?
The General Data Protection Regulation (GDPR) is a piece of EU-wide legislation which determines how people’s personal data is processed and kept safe, and the legal rights individuals have in relation to their own data. It applied from 25 May 2018 to organisations that process or handle personal data, including schools.
It's similar to the Data Protection Act (DPA) 1998 in many ways. Most of the differences involve the GDPR building on or strengthening the principles of the DPA.
The full General Data Protection Regulation has been published by the Council of the EU.
The UK has implemented the GDPR despite its intention to leave the EU.
|Acceptable Personal Use of Resources and Assets Policy_GC 2019.docx||Download|
|Acceptable personal use policy.docx||Download|
|Consent procedure_GC 2019.docx||Download|
|Data Handling Security Policy_GC.docx||Download|
|Data Protection Policy_GC.docx||Download|
|Data Security Policy.docx||Download|
|Information Governance Framework Policy_GC.docx||Download|
|INFORMATION GOVERNANCE STRATEGY_GC.docx||Download|
|Procedures for Reporting and Handling Security Incidents_GC.docx||Download|
|Records Management Policy_GC.docx||Download|