Skip to content

New Model GDPR and Data Protection Policy for Schools

KCC has produced this policy to assist the school, as the Data Controller, to meet its obligations under the GDPR and DPA.

The Model Data Protection policy for schools (DOC, 87.0 KB) is intended to ensure that personal information is dealt with properly and securely and in accordance with the legislation. It will apply to personal information regardless of the way it is used, recorded and stored and whether it is held in paper files or electronically.

All staff must have a general understanding of the law and understand how it may affect their decisions in order to make an informed judgement about how personal information is gathered, used and ultimately deleted. All staff must read, understand and comply with this policy.

This policy is for guidance only and can be amended as necessary according to the processing carried out by the school As the Data Controller the school must make its own decisions and is ultimately responsible for compliance with its obligations under the legislation.

Contact Details

Michelle Hunt
Telephone: 03000 41 62 86
Email: informationgovernance@kent.gov.uk