The General Data Protection Regulation (GDPR) is European legislation which replaces the UK’s Data Protection Act. The regulation came into force on 25 May 2018. The regulation impacts on the use of all data processing systems, including OTB, used within the EU.

The regulation applies to any system which stores personal data in a structured way; this includes computer systems but  it also applies to data held in filing cabinets.

This legislation affects staff, pupils, parents and other school users. It is not an academic exercise for others. It affects you.

It has already been agreed that the regulation will be implemented irrespective of any “brexit” decisions.

The implications for schools are considerable, probably with significant resource implications, in terms of both finance and staff time.