General Data Protection Regulations (GDPR)

The General Data Protection Regulations (GDPR) requires any organisation that gathers data/information on individuals to be open and transparent in relation to the use, storage, sharing and deletion of that data.

Ivy Education Trust has undertaken a full information audit across our Trust, and will continue to do so in order to maintain an accurate record of our processing activities and to ensure GDPR compliance.

The first principle requires that we process all personal data lawfully, fairly and in a transparent manner. The lawful basis for our processing can also affect which rights are available to individuals.

Confidentiality Policy | January 2024 | PDF

Data Protection Policy | January 2024 | PDF

Freedom of Information Policy | January 2024 | PDF

Information Security Policy | January 2024 | PDF

My Rights – a guide for data subjects | January 2024 | PDF

My Rights – query form | January 2024 | PDF

Records Management Policy | January 2024 | PDF

Staff – Acceptable Use of Personal Devices | January 2024 | PDF

Subject Access Request – process and protocol | January 2024 | PDF

Subject Access Request – form | January 2024 | PDF

Common to All | January 2024 | PDF

Filtering and Monitoring School systems | January 2024 | PDF

Job Applicants | January 2024 | PDF

Pupils | January 2024 | PDF

School Trips | January 2024 | PDF

Trust Workforce | January 2024 | PDF

Trustees and Governors | January 2024 | PDF

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing our Data Protection Policy and implementation, to ensure the Trust remains GDPR compliant.

To contact our Data Protection Officer please email DPO@ivyeducationtrust.co.uk

Information Commissioner’s Office (ICO)

Telephone: 0303 123 1113
Website: https://ico.org.uk/