You are here:

GDPR: what governors and trustees need to do to be compliant

Ref: 32393
Last updated on 14 June 2018
School types: All · School phases: All
In-depth article
Schools must ensure their data processing complies with data protection law under the General Data Protection Regulation (GDPR). Here's what your board needs to do to make sure you and your school are compliant, and a downloadable checklist for you to tick off.

Article tools

Contents

  1. 1 Your whole board needs to understand the law
  2. 2 Ask senior leaders for evidence of compliance
  3. 3 Review your own data processing procedures
  4. 4 Clerks: review your understanding of best practice
  5. 5 Add data protection to your risk register
  6. 6 Scrutinise the appointment of the data protection officer
  7. 7 Designate a data protection ‘champion’
  8. 8 Decide how you will monitor GDPR compliance
  9. 9 Local governing bodies in MATs: check the trust is compliant

Article features

  • 2 downloads
  • 3 external links

The Key has taken great care in publishing this article. However, some of the article's content and information may come from or link to third party sources whose quality, relevance, accuracy, completeness, currency and reliability we do not guarantee. Accordingly, we will not be held liable for any use of or reliance placed on this article's content or the links or downloads it provides. This article may contain information sourced from public sector bodies and licensed under the Open Government Licence.