From 25 May 2018, the UK’s Data Protection Act 1998 was replaced by a new law called the GDPR (the EU General Data Protection Regulation 2016). This law governs how we collect, use and share people’s information and provides greater rights to individuals and control over how their information is handled by organisations, including schools.

To help us to meet the requirements of the GDPR (2016), we have appointed an external Data Protection Officer from Data Protection Education (DPE). The Headteacher (who is also the data controller for the school) and a designated member of the support staff meet regularly with DPE to work towards best practice and to update training for all school staff. Any data breaches that occur in school are reported immediately to DPE who provide advice and guidance on the appropriate next steps to take. 

Should you have any queries regarding the GDPR and our school, please email us at email:

Please see our privacy notice and link below which details our treatment of personal data:

If in the meantime you would like to know more about the GDPR and your rights, please watch the video below by GDPRiS and visit the UK’s data protection regulator, the Information Commissioner’s Office at