On 25th May 2018, the General Data Protection Regulations (GDPR) came into force in the UK.  These are new data protection regulations which build upon the Data Protection Act of 1998.

The GDPR require public authorities and businesses to identify the lawful basis for storing personal data, audit information we already hold and take a ‘data protection by design and default’ approach to personal data.

We take data protection very seriously at St. Mary’s C of E Primary School.  In line with GDPR requirements, we have appointed a Data Protection Officer, Jon Clarke, our Safeguarding Governor, to oversee our approach to data management and protection.

In order to ensure that we comply with the new regulations, we are reviewing our current policies and practices.  We are in the process of updating our privacy notices in line with the new requirements.

To learn more about the General Data Protection Regulation, please visit the Information Commissioner’s Office website on

GDPR Letter to parents May 2018