White Rock Primary School

'Inspiring Learning Together'
  • A
  • Ofsted
  • B
  • C
  • D

    White Rock Primary School, Davies Avenue, Paignton, Devon, TQ4 7AW

    Email: admin@whiterockprimaryschool.co.uk | Tel: 01803 577940
  • E
  • F

  • Quick Links

    H

White Rock Primary School

Data Protection (GDPR)

DATA PROTECTION (GDPR)

The ‘General Data Protection Regulation’ (GDPR) outlines how we can use personal data relating to you and your child and keep it safe. It also strengthens your rights over this personal data.

This area of our website informs you about how we are compliant with The Data Protection Act (2018).

For our Data Protection policy, please see our main 'Policies' page.

Data Protection Officer

Our school's Data Protection Officer is:

Ben Cain | Fusion Education People Solutions 

Tel: 01924 907319

Email: dpo@feps.co.uk

 

The DPO team will log your Subject Access Requests and act as the liaison between you, the school and the ICO (Information Commissioner's Office). For more information on Subject Access Requests please see below. 

Subject access requests

What are subject access requests?

Individuals have the right to access the personal data and supplementary information we hold about them. This allows them to be aware of, and verify the lawfulness of, you processing this data. 

This right applies to everyone whose personal data our school holds, including staff, governors, volunteers, parents, carers and pupils. 

The law

Under the General Data Protection Regulation (GDPR), we:

  • must provide the information free of charge
  • must comply within 1 month
  • should provide the information in a commonly used electronic format, if the request was made electronically

 

Who deals with subject access requests?

The school’s Data Protection Officer will deal with all subject access requests received. This is based on advice from the Information Commissioner’s Office’s guidance.

 

How we will respond to subject access requests

On receiving a request, our Data Protection Officer will contact the individual via phone to confirm the request was made. We will then verify the identity of the person making a request using ‘reasonable means’. Generally, this means we will ask for two forms of identification.

In most cases, we will provide the information within 1 month, and free of change. If the request is complex or numerous, we can comply within 3 months, but we will inform the individual of this within 1 month and explain why the extension is necessary.

If the request is made electronically, we will provide the information in a commonly used electronic format.

We recognise that school holidays are counted in the response time and if we receive a request in the school holidays, we will still respond within the same time frame.

 

Unfounded or excessive requests

If the request is unfounded or excessive, we will either:

  • charge a reasonable fee for you to comply, based on the administrative cost of providing the information
  • refuse to respond
  • comply within 3 months, rather than the usual deadline of 1 month; however, we will always inform the individual of this and will explain why

Usually, ‘unfounded' or 'excessive’ means that the request is repetitive, or asks for further copies of the same information.

 

Refusing a request

When we refuse a request, we will:

  • respond to them within 1 month
  • explain why we are refusing the request
  • inform the individual that they have the right to complain to the Information Commissioner's Office

Quick Links

Choose a link to visit.

Awards

View our awards
Top

Cookies

Unfortunately not the ones with chocolate chips.

Our cookies ensure you get the best experience on our website.

Please make your choice!

Cookies

Some cookies are necessary in order to make this website function correctly. These are set by default and whilst you can block or delete them by changing your browser settings, some functionality such as being able to log in to the website will not work if you do this. The necessary cookies set on this website are as follows:

Website CMS

A 'sessionid' token is required for logging in to the website and a 'crfstoken' token is used to prevent cross site request forgery.
An 'alertDismissed' token is used to prevent certain alerts from re-appearing if they have been dismissed.
An 'awsUploads' object is used to facilitate file uploads.

Matomo

We use Matomo cookies to improve the website performance by capturing information such as browser and device types. The data from this cookie is anonymised.

reCaptcha

Cookies are used to help distinguish between humans and bots on contact forms on this website.

Cookie notice

A cookie is used to store your cookie preferences for this website.

Cookies that are not necessary to make the website work, but which enable additional functionality, can also be set. By default these cookies are disabled, but you can choose to enable them below: