On 25 May 2018, the General Data Protection Regulation (GDPR) will be enforced across the EU. The law aims to give EU citizens more control over their data and to create a uniformity of rules to enforce across the continent.
The GDPR covers all data controllers and data subjects based in the EU. It also applies to organisations based outside the EU that process the personal data of its residents.
Mandatory obligation to manage and report data breaches within 72 hours.
It is the school’s responsibility to ensure 3rd party suppliers comply with GDPR the data they process for you.
High fines will be enforced for non-compliance as well as potential impact of Ofsted ratings from data policies and processes deficiencies.
Increased demands on legal agreement with all suppliers, on ensuring how data is stored and processed.
Have questions on GDPR? Speak with one of our experts for more information.