GDPR
At Launton CE Primary School, we are committed to protecting the privacy and security of personal data.
What is GDPR?
General Data Protection Regulation (GDPR) provides a legal framework that sets out how personal information must be collected, used, and protected, and strengthens individuals’ rights in relation to their data.
What personal data do we collect?
We collect and process personal data for legitimate educational and administrative purposes, including but not limited to:
- Pupil information, such as name, date of birth, contact details, medical information, attendance records, academic progress, and safeguarding information
- Parent and carer contact details
- Staff employment records
- Information relating to volunteers and governors
Why do we collect and use pupil information?
We collect and use pupil information, for the following purposes:
- Support learning and educational development
- Monitor and report on pupil progress and attainment
- Provide appropriate pastoral care
- Assess and improve the quality of our services
- Keep children safe, including managing food allergies and emergency contact information
- Meet our statutory duties, including required data collections for the Department for Education (DfE)
How do we protect personal data?
We have robust security measures in place to protect personal data from unauthorised access, loss, or misuse. These include:
- Secure digital storage systems
- Restricted access to sensitive information
- Regular staff training on data protection and GDPR
- Secure disposal of data when it is no longer required
