Data Protection

Data Protection Act 1998

The Data Protection Act 1998 controls how your personal information is used by organisations, businesses orthe government.

Everyone responsible for using data has to follow strict rules called ‘data protection principles’. They mustmake sure the information is:

  • used fairly and lawfully
  • used for limited, specifically stated purposes
  • used in a way that is adequate, relevant and not excessive
  • accurate
  • kept for no longer than is absolutely necessary
  • handled according to people’s data protection rights
  • kept safe, secure and not transferred outside the European Economic Area without adequate protection

The Freedom Of Information Act 2000

The Freedom of Information Act 2000 provides public access to information held by public authorities.

It does this in two ways:

  • public authorities are obliged to publish certain information about their activities; and
  • members of the public are entitled to request information from public authorities.

The Act covers any recorded information that is held by a public authority in England, Wales and NorthernIreland, and by UK-wide public authorities based in Scotland. Information held by Scottish public authoritiesis covered by Scotland’s own Freedom of Information (Scotland) Act 2002.

Public authorities include government departments, local authorities, the NHS, state schools and policeforces. However, the Act does not necessarily cover every organisation that receives public money. Forexample, it does not cover some charities that receive grants and certain private sector organisations thatperform public functions.

Recorded information includes printed documents, computer files, letters, emails, photographs, and soundor video recordings.

The Act does not give people access to their own personal data (information about themselves) such as theirhealth records or credit reference file. If a member of the public wants to see information that a publicauthority holds about them, they should make a subject access request under the Data Protection Act 1998.

Privacy Notice Data Protection Act 1998

This privacy notice in Barbara Priestman Academy refers to our students, their parents and carers.

Barbara Priestman Academy are the Data Controller for the purposes of the Data Protection Act. We collect information from you and may receive information about you from your previous school and the Learning Records Service. We hold this personal data and use it to:

  • Support your teaching and learning;
  • Monitor and report on your progress;
  • Provide appropriate pastoral care, and
  • Assess how well your school is doing.

This information includes your contact details, curriculum assessment results, attendance information and personal characteristics such as your ethnic group, special educational needs and any relevant medical information.

If you are enrolling for post 14 qualifications we will be provided with your unique learner number by the Learning Records Service and may also obtain from them details of any learning or qualifications you have undertaken.

We will not give information about you to anyone outside the school without your consent unless the law and our rules allow us to.

We are required by law to pass some of your information to the Local Authority and the Department for Education (DfE)

If you want to see a copy of the information we hold and share about you then please feel free to contact school.

If you require more information about how the Local Authority (LA) and/or DfE store and use your information, then please check out their websites.

Sunderland Local Authority      Department Of Education

 This page is reviewed annually. Last reviewed January 2017.