GDPR impacts anyone who holds, controls or processes personal data and that includes Schools.
In fact – because Schools retain the personal data of children (including those under the age of digital consent) and often hold Sensitive Medical data– GDPR is particularly relevant to them.
Absolutely – there is a feeling within some circles that if we ignore GDPR for long enough – it will disappear, or that it is the new Y2K problem – but in both instances, that is not the case.
If your school’s preparation is not yet underway – time is ticking in advance of the May 25 deadline for compliance.
· What is GDPR: GDPR significantly changes data protection law in Europe, strengthening the rights of individuals and increasing the obligations and responsibilities for Schools in how they collect, use and protect personal data.
· Why should we be concerned: GDPR protects the personal data of everyone – which includes both School Staff, Parents & Most importantly – School Children – much of the focus has been on the penalties for non-compliance but the real advancement here is the rights each of us have with regard to our personal data.
· Who needs to comply: Anyone who holds or processes personal data – this means both the School & 3rd party processors and contractors who might come into the school environment must be GDPR Compliant.
· What type of areas with schools might need to be reviewed? Lots actually – for example – How the School obtained the data, how they store and distribute personal data, how they manage sensitive data such as Children’s Data or Medical Data, the security of their data systems (Printers/IT Systems/CCTV/Data Disposal etc)
· From a practical point of view – what are the essential steps Schools will need to take to become compliant:
How do I find out more?
Our training partners, Optima Training, are running GDPR Preparation Courses, click here for more information.
For more information on Appierschool School to Parent apps, visit our full site here.
Content courtesy of Optima Training and Consulting