Lindfield Primary Academy is part of the University of Brighton Academies Trust; a network of 15 academies in Sussex all supporting each other, and their pupils, to excel.
The Trust is making good progress with preparing for the new General Data Protection Regulation (GDPR), which becomes law on 25 May 2018.
The changes to the law will have a significant impact across the Trust, including its Academies and central teams. The three key concepts of GDPR are currently being addressed, namely; data protection principles, rights of the individual and accountability.
This work is being led by the Trust’s GDPR coordinator and Director of Planning, Policy and Governance via a GDPR project management group. Informed by guidance and advice published by the Information Commissioner’s Office the project commenced with an audit of current data protection practice across the trust and compliance with current legislation.
Next steps include the appointment of a Trust Data Protection Officer to liaise with all academies and central teams, alongside a programme of staff training and awareness. Training to understand the concept of GDPR and the specific implications for their area of work will be offered to key stakeholders; day-to-day good practice training will be offered to all staff.
Following a period of research and due diligence, privacy management software will also be implemented to assist with the administration of GDPR across all academies and central teams: this will help ensure the Trust achieves maximum compliance and minimum risk of not knowing where vulnerabilities are or where breaches have occurred.
Samantha Coates, Director of Planning, Policy and Governance said: “We are committed to ensuring implementation of GDPR by May 2018, and to ensuring that work continues to pursue improved compliance going forwards.”