On the 25th May 2018, the General Data Protection Regulations (GDPR) came into force in the UK. These are new data protection regulations built upon the Data Protection Act of 1998.

The GDPR require public authorities and businesses to identify the lawful basis for storing personal data, audit information we already hold and take a ‘data protection by design and default’ approach to personal data.

We take data protection very seriously at Highover JMI School. In line with GDPR requirements, we have already appointed a Data Protection Officer to oversee our approach to data management and protection. 

The Data Protection Officer (the “DPO”) is responsible for ensuring the School is compliant with the GDPR and with this policy. This post is held by Jon Kirby, Chair of Governors.  To contact the DPO please email dpo@highover.herts.sch.uk 

Any questions or concerns about the operation of this policy should be referred in the first instance to the DPO.

In order to ensure that we comply with the regulations, we regularly review our current policies and practices. We have already updated our privacy notices in line with the new requirements. These can be found below:

Data Protection Policy

GDPR Privacy Notice Governors

GDPR Privacy Notice Parents/carers

GDPR Privacy Notice Staff

Online Safety Policy

Subject Access Request Policy