The Cathedral School of St Peter and St John currently processes data in line with Data Protection law 2018, and is registered with the Information Commissioner's Office (ICO) on their register of data controllers.
What does ICO do?
ICO is the UK’s independent body set up to uphold information rights
It enforces and regulates freedom of information and data protection laws
Provides information and advice
Promotes good practice
At The Cathedral School of St Peter and St John RC Primary we treat all personal information as private and confidential. We understand the trust you place on us to handle and store this information securely and confidentially.
Pupil data is essential for the schools’ operational use. Whilst the majority of pupil information you provide to us is mandatory, some of it requested on a voluntary basis. In order to comply with the data protection legislation, we will inform you at the point of collection, whether you are required to provide certain pupil information to us or if you have a choice in this.
Our Publication Schedule and guide to information can be found in our Freedom of Information policy.
We collect and use pupil information for the following purposes:
a) to support pupil learning
b) to monitor and report on pupil attainment progress
c) to provide appropriate pastoral care
d) to assess the quality of our services
e) to keep children safe (food allergies, or emergency contact details)
f) to meet the statutory duties placed upon us for DfE data collections
On 25th May 2018, the new General Data Protection Regulations (GPDR) came into force and these apply to all schools adding extra responsibilities to those of the Data Protection Act 1998. Schools ensures that the strategies we have in place for data protection are compliant and recognise that failure to do so could result in very heavy fines for breaches. Accountability is central to our General Data Protection.
The 6 Principles of GPDR
Data will be:
1. Processed fairly lawfully and in a transparent manner
2. Used for specified, explicit and legitimate purposes
3. Used in a way that is adequate, relevant and limited
4. Accurate and kept up to date
5. Kept no longer than is necessary
6. Processed in a manner that ensures appropriate security of the data
It is also consistent with the UN Convention on the rights of a child, which (Article 12) says that every child has the right to express their views, feelings and wishes in all matters affecting them, and to have their views considered and taken seriously. Our children have been involved in the creation of our pupil privacy notice that is child friendly and age appropriate.
If you have any questions in regards to Data Protection please contact Mrs Diane Hanley, our school Data Controller.
Our schools Data Protection Officer (DPO) is responsible for overseeing data protection within the school so if you have any questions after speaking with Mrs Hanley, please do contact them on the information below:
Data Protection Officer: Craig Stilwell
Company: Judicum Consulting Ltd
Address: 72 Cannon Street. London. EC4N 6AE
Email: dataservices@judicium .com
Telephone: 0203 326 9174