General Data Protection Regulation

From 25 May 2018, the EU General Data Protection Regulation 2016 (GDPR) replaces the UK's Data Protection Act 1998. This regulates how we use personal data and keep it safe. The regulation covers the collection, usage and sharing of personal information. The aim of this is to make sure that sensitive and private information about our School Family stays safe. 


The relevant documents, policies and procedures below outline the role of the School as a data controller handling personal information in respect to pupils, parents, staff, governors, and volunteers.


Further information can be found on the Information Commissioner’s Office website.

General Privacy Notice

Privacy Notice Procedure

Privacy notice - School photos and additional activities

Privacy notice - School Visitors

Privacy notice - Managing employment 

Privacy notice - Delivery of the curriculum and pastoral care

Privacy notice - Managing School Governors

Privacy notice - Managing Volunteers

Privacy notice - Publishing pupils' coursework

Privacy notice - Marketing activities

GDPR Rights - Advice to parents and guardians

Data Protection Policy

Data Protection Policy Statement

Statutory Request Policy

Parents Guide to Subject Access Request

Publication Scheme