Data Protection
We are committed to your data security.
Our security measures, policies and processes are all designed to keep you and your pupils' information safe online.
ICO
Compliant
Compliant
We are a data processor for schools and also registered with the Information Commissioner's
Office (ZA218566) as a Data Controller for our own data.
Encrypted
Traffic
Traffic
All online traffic is encrypted using HTTPS (Secure Hypertext Transfer Protocol) and using SSL (Secure Sockets Layer).
Access
Control
Control
School-controlled roles determine which users can access sensitive data.
Peace
of Mind
of Mind
All of our employees have enhanced CRB checks to give you peace of mind.
GDPR
The General Data Protection Regulation (GDPR) came into effect on 25th May 2018: here is what we've done to ensure our compliance, to give you full peace of mind:
- Raised awareness of GDPR requirements with staff who work for us or with us
- Audited and categorised the personal data we hold and its origin
- Documented the legal basis for the personal data we process and its retention
- Reviewed all our policies, for example to ensure that we handle personal data requests appropriately (SARs)
- Reviewed our procedures with relation to data retention periods for personal data and the secure deletion of personal data
- Carried out risk identification audits through 'Data Protection Impact Assessments' for future development
- Ensured that our suppliers are also fully GDPR compliant