You are here:
How to comply with the General Data Protection Regulation
Here's what you need to do to make sure your school is compliant with the GDPR, in force since 25 May 2018.
Contents
- Tell key people the law has changed
- Identify what data you hold, and why you hold it
- Appoint your data protection officer
- Include certain information in your privacy notices
- Review your data processing procedures
- Include certain information in your contracts with suppliers
Also in this topic: GDPR
- Email security: sending personal data
- GDPR: ensuring your suppliers are compliant
- GDPR for commercial activities
- GDPR jargon buster
- GDPR: managing your photo archives
- GDPR mythbuster
- GDPR: seeking consent for processing personal data
- GDPR: template record of processing activities
- How to choose which ‘lawful basis’ to use under the GDPR
- Processing data: at what age can pupils give consent?
- 'Special category' data under the GDPR
- Subject access requests: guidance and template forms
- Taking and displaying pupil photos and information
- Taking documents home: securing personal data
- The General Data Protection Regulation explained
- Using personal devices: securing personal data
The Key has taken great care in publishing this article. However, some of the article's content and information may come from or link to third party sources whose quality, relevance, accuracy, completeness, currency and reliability we do not guarantee. Accordingly, we will not be held liable for any use of or reliance placed on this article's content or the links or downloads it provides.