Recently Updated

The organisation is fully committed to comply with the General Data Protection Regulation (GDPR). GDPR applies to all organisations that process data relating to their employees, as well as to others including customers, contractors and clients. It sets out principles which should be followed by those who process data; it gives new and extended rights to those whose data is being processed.

The organisation regards the integrity of its computer system as central to the success of the organisation. It contains information about patients, staff and the operations of the business and therefore must be kept secure. Its policy is to take any measures it considers necessary to ensure that all aspects of the system are fully protected. This policy aims to comply with the requirements of both the General Data Protection Regulation (GDPR) and the Data Protection Act (DPA) 2018.

[Name of schoolprovision] aims to fulfil its obligations under the Data Protection Act (DPA) 2018 and the General Data Protection Regulation (GDPR) to the fullest extent. This policy sets out our commitment to protecting personal data and how that commitment is implemented in respect of the collection and use of personal data.

The policies and procedures of this care service on the use and keeping of its records are produced to meet the requirements of the national health and care standards set out in My Support, My Life, which emphasise the importance to service users of their care providers keeping full, accurate, up-to-date records on them, with their use buttressed by data protection, confidentiality, secure storage and authorised access policies and procedures.