General Data Protection Regulations (GDPR)

On the 25th May 2018, the General Data Protection Regulation (GDPR) comes into force in the UK.  

The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU).

The GDPR require public authorities and businesses to identify the lawful basis for storing personal data, audit information we already hold and take a ‘data protection by design and default’ approach to personal data.  

Of course, at St. Joseph’s Catholic Primary School, we take data protection very seriously.  In line with GDPR requirements, we are currently in the process of appointing a Data Protection Officer to oversee our approach to data management and protection. 

In order to ensure that we fully comply with the new regulations, we are reviewing our current policies and practices. We have already updated our privacy notices in line with the new requirements. Once approved, these will be available in For Parents/GDPR, along with our revised Data Protection Policy.

As part of the compliance process, we are also seeking to update the consent forms we have received from parents and pupils. The new regulations are clear that consent must be up-to-date and clearly recorded. From now on, lack of response cannot be interpreted as implied consent. We therefore ask that you return the consent form which your child(ren) brought home this evening to us promptly, and no later than Friday 4th May 2018.

To learn more about the General Data Protection Regulation, please visit the Information Commissioner’s Office website on

Thank you for your continued support.

This entry was posted in General News. Bookmark the permalink.