In this area you will find the documents and policies relating to Data Protection and GDPR at Spring Common Academy.
Please click on the highlighted text to view full details of each item.
CERTIFICATE OF REGISTRATION - This certificate of authorisation allows us to safely hold, process and share any personal information about the people connected to this organisation, in accordance with the (ICO) Information Commissioner's Office as detailed in the Register of Data Controllers document (below).
REGISTER OF DATA CONTROLLERS - Our registration with the ICO (Information Commissioner's Office) ensures that we handle our data correctly. This document explains what information we hold and who we may share it with.
DATA PROTECTION POLICY - Spring Common Academy aims to ensure that all personal data collected about staff, pupils, parents, trustees, visitors and other individuals is collected, stored and processed in accordance with the General Data Protection Regulation (GDPR) and the expected provisions of the Data Protection Act 2018 as set out in the Data Protection Bill 2018.
PRIVACY NOTICE FOR PARENTS/CARERS - This Privacy notice explains how we collect, store and use personal data about our pupils.
PRIVACY NOTICE FOR STAFF - This Privacy notice explains how we collect, store and use personal data about individuals we employ, or otherwise engage, to work at our school.
PRIVACY NOTICE FOR PUPILS - This privacy notice explains how we collect, store and use personal data about you. Many pupils at our school may need parental advocacy.
RECORDS RETENTION SCHEDULE - This documents details the retention period of records and how they are disposed of.
PERSONAL DATA BREACH PROCEDURE - This procedure is based on guidance produced by the ICO (Information Commissioner's Office)
DfE DATA PROTECTION TOOLKIT - Guidance used by Spring Common Academy.