Data Protection for Schools

Duration 2 hours

CPD Approved
Data Protection for Schools
For me
For teams
  • 100% online training

  • Start when you like

  • Learn on any device (desktop, mobile or tablet)

  • Instant assessment and result

  • 1 learner per course

  • Train teams of all sizes

  • Bulk discounts starting at 10% off 10 courses

  • Learn on any device (desktop, mobile or tablet)

£25 +VAT

include vat

Includes a 10% discount for 10+ courses

Under the Data Protection Act 2018 and the GDPR, all schools are classified as data controllers, because they hold large amounts of personal information about pupils, members of staff, parents, governors, and visitors. As a result, schools are required to appoint a data protection officer, and must comply with the law for all data processing activities - these include collecting, storing, sharing, and using data.

This Data Protection for Schools course explains what your responsibilities are under the UK data protection law and the EU GDPR, and will help you understand the steps you should take to ensure that your school’s data processing activities are secure and legally compliant.

100% online training

Access anywhere

Same day digital certificate

Printed certificate posted next working day

Full audio voiceover

Unlimited assessment attempts

Developed by a qualified legal professional

Accredited by CPD

Earn 2 CPD points on completion

What you'll learn

By completing this course, you will:

  • Understand the key terms used in data protection law.
  • Understand your school's responsibilities under the GDPR and the Data Protection Act.
  • Have knowledge of the principles of data protection that all schools - and all school staff - must adhere to.
  • Understand the lawful grounds for processing personal information.
  • Understand how to obtain consent from data subjects, including students, parents, staff, governors, and anyone connected to the school.
  • Have an understanding of data subject rights, including access rights and the right to be forgotten.
  • Recognise the responsibilities of your school as a data controller, and understand the roles and responsibilities of data processors and your Data Protection Officer.
  • Understand how to ensure data security and report personal data breaches.
  • Be familiar with the consequences of non-compliance.

Training you can trust

  • Course Content
  • Assessment
  • Suitable for

Module 1: Introduction

What is data protection?, key definitions, GDPR - what is it? and will Brexit affect it?, the Data Protection Act 2018, and a case study.

Module 2: The Principles of Data Protection

Fair, lawful, and transparent processing, purpose limitations, data minimisation, accuracy, data retention and storage, sharing data, data security, and accountability.

Module 3: Legal Grounds for Processing and Obtaining Consent

Collecting data, performance of a contract, legal compliance, vital interests and public interest, legitimate interests, obtaining consent, photographs, CCTV and biometrics, methods for obtaining consent, withdrawing consent and existing consent.

Module 4: Data Subject Right

Data subject rights, access rights, the right to be forgotten, the right to restriction and rectification, and the right to object, data portability, and automated processing.

Module 5: Data Protection Responsibilities

Who has responsibility for data protection? Data controllers, data processors, data protection officers, data protection by design and default, data security, reporting breaches, transferring data and consequences of non-compliance.

The online assessment is taken on completion of the training material. You will be asked 20 multiple choice questions with a pass mark of 80%. The answers are marked automatically so you will instantly know whether you have passed. If you don't pass don't worry! You can take the test as many times as you need with no extra charge.

All schools are data controllers and process large amounts of data about their students, staff, and parents, so it is vital that every member of staff understands how to process that data securely and in line with the law. Data Protection for Schools is suitable for staff working in a school environment at all levels, and no previous knowledge is required. It is suitable for both data controllers and data processors.

If you use the internet as part of your day to day work then you may also be interested in taking our Cyber Security Training.

If you don’t work in education and are part of another organisation, including charities, professionals, sole traders and membership organisations, then you should take our Data Protection Training Course instead.

Written by experts

Profile photo of Antonia Noble, Barrister and Safeguarding Specialist

In partnership with

Antonia Noble

Barrister and Safeguarding Specialist

Antonia Noble is a former criminal barrister with over 25 years of experience and a highly respected safeguarding specialist.

She has worked in a variety of roles with professionals and organisations including responsibilities for adult and child safeguarding as a cabinet member for Gloucestershire County Council. 

She has a vast range of safeguarding and child protection experience that includes roles and duties such as school governor, adult and child safeguarding responsibilities for Local Authorities and with the Criminal Cases Review Commission to review suspected miscarriages of justice.

Antonia has supported and worked with cabinet member issues, heads of children’s services, adult services, Vice Chancellors, police, and senior leaders in health. 

Fairness and justice are at the heart of every aspect of Antonia’s work and she continues to deliver training and support to safeguarding leaders, social workers and a variety of organisations.

Course reviews