GDPR - General Data Protection Regulations

From 25th May 2018, the General Data Protection Regulation, which is often referred to as the “GDPR”, replaced the DPA (1998).  Although many of the principles have remained the same as the DPA 1998, there have been some important changes.

The GDPR require public authorities and businesses to identify the lawful basis for storing personal data, audit information we already hold and take a ‘data protection by design and default’ approach to personal data.    

Data Protection Officer is:  Mrs Emma James

Deputy Data Protection Officer is : Mrs Joanne Walsh

If you would like to contact the DPO please email admin@stcross.herts.sch.uk

In order to ensure that we comply with the regulations, we have a number of policies and notices available in school and on our school website.

Please note: the personal data of employees, parents or visitors to school may be shared with NHS/Public Health Agencies as required for the response to the Covid pandemic.

On entrance to the school, you will be asked to scan the Track and Trace QR code when you arrive, using the NHS COVID-19 app. This is to help trace and stop the spread of coronavirus (COVID-19).

Please see our draft policies below, currently being reviewed by Governors.