At Hollyfast we hold and process personal information on each pupil, and limited information on parents/carers, in order to provide a rounded education and a safe environment for each child.

The General Data Protection Regulations (GDPR) came into effect on 25th May 2018.  It brought higher standards for handling data and greater expectations for improved transparency, enhanced data security and increased accountability for processing personal data.  Schools have a legal duty to comply with the GDPR.

Where the data stored and processed is to enhance the educational provision, but is not a key element of providing an education, we will seek consent from the parent/carer.

This includes:-

• Images and videos to be displayed in school
• Images and videos to be used on our social media
• Images and videos to be used on the school website

Our DPO is SchoolPro TLC Limited and is contactable via DPO@SchoolPro.UK  Their role is to oversee and monitor the school's data protection legislation.

The schools registration as a data controller is Z7906298.