What is GDPR?
This refers to the General Data Protection Regulation which came into effect on 25 May 2018.
The GDPR requires personal data to be processed in a manner that ensures its security. This includes protection against unauthorised or unlawful processing and against accidental loss, destruction or damage. It requires that appropriate technical or organisational measures are used.
GDPR defines personal data as:
Personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Privacy Notices - Explaining how we use your data:
CCTV Camera Policy 2023.
Data Management and ICT Security Policy 2023
Data Protection Policy 2022
Individual Right Policy 2021
Records Retention and Disposal Policy 2023
Subject Access Requests Policy 2023
Subject Access Request Form
Subject Access Requests
To make a Subject Access Request, please email the Link Academy Trusts Data Protection Officer, Susan Stansfield dpo@thelink.academy