The General Data Protection Regulation (GDPR) significantly updates the Data Protection Act (DPA) 1998 to reflect changes in technology and the way organisations collect and use information about people in the 21st century. It regulates the processing of personal data, and gives rights of privacy protection to all living persons.
In accordance with the GDPR, we at St James C of E Infant School recognise that we collect and process personal data and because we decide how and why we do that, we are data controllers. This means that we have legal obligations to people regarding how we handle their data and manage their privacy and we must register as a data controller with the Information Commissioner’s Office (ICO) Anyone can read the details of our ICO notification by going online to https://ico.org.uk/esdwebpages/search and entering our registration number. Data controllers are normally organisations and not people although our head teacher is responsible for everything we do day-to-day and we have appointed a Data Protection Officer (DPO).
Our Data Protection Officer is Mr Stuart Robertson. He can be contacted on:
There are a variety of documents which give information on how we handle and control data in our school. Please click on the links below to view them.