Data Protection & GDPR
Taking data security and privacy seriously
The Trust takes data security and privacy extremely seriously and believe that the General Data Protection Regulation (GDPR) is an important step forward for clarifying and enabling individual privacy rights.
The Trust is committed to maintaining full compliance with the GDPR. To ensure this, the Trust undertakes comprehensive GDPR audits to ensure data handling best practice is being followed by all schools and the Trust workforce.
The Trust has also produced a number of key documents and privacy notices that cover in detail how it handles and manages data:
Data Protection Officer
The Data Protection Officer for the Trust is Alvin Walters. For enquiries please contact him at firstname.lastname@example.org .
Freedom of Information
The Freedom of Information Act 2000 gives the public right of access to information produced in the course of the Trust’s work. Click here to review the Trust policy on Freedom of Information.
Consent is one of the six lawful bases to process personal data. Consentunder the General Data Protection Regulations (GDPR) has a particular meaning. It should always be:
- freely given
- an unambiguous indication of an individual’s wishes with regard to the processing of their personal information.
The Trust uses the following Consent forms:
Subject Access Requests
Individuals have the right to request access to the information the Trust holds about them.
If an individual wants to make a subject access request, the following form should be downloaded and completed:
The completed Subject Access Request should be emailed to the Data Protection Officer at email@example.com.
As part of the Trust’s GDPR obligations it will:
- Provide the information free of charge
- Comply within 1 month of the request.
- Provide the information in a commonly used electronic format.