GDPR Preparation

On May 25th 2018 the General Data Protection Regulation came into affect across the EU. The GDPR is a piece of EU-wide legislation which will determine how people’s personal data is processed and kept safe and the legal rights individuals have in relation to their own data.

As public organisations, schools (and academies) are required to comply.

St. Luke’s  already has strong data protection policies in place but these now all need to be updated in line with GDPR. In addition to comply with GDPR, we need to show a paper trail and how we are compliant.

The process of becoming fully GDPR compliant affects all aspects of the school.

We already highly value and protect all of our student, parents and staff data and will continue to do so in the presence of GDPR.

As a parent/carer you may receive some letters from us regarding GDPR. Some of those may be about consent and some about updating your information with us. We would appreciate it if you would read all information you receive and send back any relevant documents back to school.

For further information about GDPR please visit the ICO website.

The video below is a great overview of GDPR and how it affects schools and has been produced by GDPRiS to inform parents.

Click here to watch GDPR Mind Map for Parents


Should you require any information concerning Data Protection, such as Subject Access Requests or Individual Rights please contact the Business Manager in the first instance If you have any concerns about the schools data protection practice, you can contact our Data Protection Office at DPOSchools@Rochdale.Gov.UK.

Please click the links below to read our privacy notices:

Privacy Notice for Parents and Carers – How We Use Pupil Data

Privacy Notice for Parents and Carers –  How We Use Your Personal Data

Privacy Notice for the School Workforce

Schools Data Protection Policy

Please click the links below to download our consent form:

GDPR Letter for Parents and Carers

St. Lukes Consent Form May