General Data Protection Regulation
The new General Data Protection Regulations came into force from 25 May 2018 and changes the way data is handled.
At Tyntesfield Primary School, we respect the privacy of individuals within our care; our pupils, parents/carers, staff and partners. We are fully aware of the requirements of GDPR and are working within compliance. Â The following documents explain how we collect, store and use personal data.
If you have any concerns or questions regarding how we look after your personal information, please contact the Headteacher in the first instance via Tyntesfieldadmin@inspiringlearners.co.uk
Data Protection Officer (DPO)
The DPO is responsible for overseeing this data protection policy and developing data-related policies and guidelines.Â
Please find below details of the Trust’s Data Protection Officer:
Data Protection Officer: Judicium Consulting LimitedÂ
Address: 72 Cannon Street, London, EC4N 6AE 8Â
Email: dataservices@judicium.comÂ
Web: www.judiciumeducation.co.ukÂ
Telephone: 0203 326 9174Â
Lead Contact: Craig StilwellÂ
Please contact the DPO with any questions about the operation of this Data Protection Policy or the GDPR or if you have any concerns that this policy is not being or has not been followed. In particular, you must always contact the DPO in the following circumstances:Â
(a) If you are unsure of the lawful basis being relied on by the Trust to process personal data;Â
(b) If you need to rely on consent as a fair reason for processing (please see below the section on consent for further detail);Â
(c) If you need to draft privacy notices or fair processing notices;Â
(d) If you are unsure about the retention periods for the personal data being processed [but would refer you to the Trust’s data retention policy in the first instance];Â
(e) If you are unsure about what security measures need to be put in place to protect personal data;Â
(f) If there has been a personal data breach [and would refer you to the procedure set out in the Trust’s breach notification policy];Â
(g) If you are unsure on what basis to transfer personal data outside the EEA;Â
(h) If you need any assistance dealing with any rights invoked by a data subject;Â
(i) Whenever you are engaging in a significant new (or a change in) processing activity which is likely to require a data protection impact assessment or if you plan to use personal data for purposes other than what it was collected for; (j) If you plan to undertake any activities involving automated processing or automated decision making;Â
(k) If you need help complying with applicable law when carrying out direct marketing activities;Â
(l) If you need help with any contracts or other areas in relation to sharing personal data with third parties.
Trust Data Protection Policy
Trust Retention Policy
Trust Privacy Notes
Trust Subject Access Request Policy