From 25 May 2018 processing of personal data by organisations had to comply with the General Data Protection Regulation. This set of rules gives a clear set of rights to everyone in society as well as making clear the responsibilities of organisations which handle or process information about people (or ‘Data Subjects’ as they are known). GDPR applies to ‘Data Controllers’ and ‘Data Processors’.
A ‘Data Controller’ determines the purposes and means of processing personal data.
A ‘Data Processor’ is responsible for processing personal data on behalf of a controller.
Our Lady of Lourdes Catholic Primary School is a Data Controller as we collect or generate data about pupils, parents/guardians, staff and visitors. To read more, please follow the link to view our Staff Privacy Notice.