GDPR - Data Protection

What is GDPR?

Things are changing! 

The GDPR will apply in all EU member states from 25 May 2018. This will affect how schools manage personal data and how this is protected and shared.

The EU's General Data Protection Regulation (GDPR) is the result of four years of work by the EU to bring data protection legislation into line with new, previously unforeseen ways that data is now used.

Currently, the UK relies on the Data Protection Act 1998, which was enacted following the 1995 EU Data Protection Directive, but this will be superseded by the new legislation. It introduces tougher fines for non-compliance and breaches, and gives people more say over what companies can do with their data. It also makes data protection rules more or less identical throughout the EU.

To ensure OLSH school is fully compliant and ready for this change, we have updated and written specific Privacy Notices, policies and Consent Forms to make sure we are compliant with the new GDPR regulations.

Check regularly on this section to see what is new.

Follow the link for more information GDPR.


Also, click here for an overview of the 12 steps to compliance.

For full information on school's GDPR practices and policies, please check our asset registers, privacy policies and much more below.


Files to Download

- Asset register 1 and legal basis for storing information 1

- Asset register and legal basis for storing information 2

GDPR Data protection and Privacy Policy

- Overall OLSH GDPR Privacy notice.

Further, specific privacy notices:

* Staff 

* Pupils

* Parents

* Governors

- Updated CCTV policy

- Updated photo and video school policy

Here you can meet the lovely staff who work at our school.