Data Protection - GDPR
What is the GDPR?
The General Data Protection Regulations (GDPR) is a set of guidelines for the collection and processing of personal information of individuals within the EU; it will come into effect in the UK from 25 May 2018, taking the place of the DPA, and will not be affected by the UK’s decision to leave the EU.
The GDPR applies to the following:
- Data subject – an individual who is the subject of personal data
- Data controller – a person who determines the purposes and way that data is processed (The School or MAT)
- Data processor – any person who processes data on behalf of the data controller
Schools data is regulated by GDPR.
For more information on GDPR at Sugar Hill please see our Privacy Notice and Data Protection Policy.