Data Protection for Schools
Under the Data Protection Act 2018 and the GDPR, all schools are classified as data controllers. This means that they should appoint a data protection officer and ensure compliance with the law for all data processing activities. Schools hold large amounts of personal information, whether it’s about pupils, members of staff, parents, governors or visitors, and it’s essential that you take responsibility for how you obtain, store, share and use people’s personal details.
This Data Protection for Schools course explains what your responsibilities are under the UK data protection law and the EU GDPR, and will help you understand the steps you should take to ensure that your school’s data processing activities are secure and legally compliant.
- Developed by a qualified legal professional
- Accredited by CPD
- Fully online course and assessment with no time limits
- Full audio voiceover
- Approximate duration: 2 hours
- On completion, certificate is posted the next working day
Who Should Take This Course?
All schools are data controllers and process large amounts of student, staff and parent data, so all members of staff must understand how to process that data securely and in line with the law. Data Protection for Schools is aimed at anyone who works in a school environment and is suitable for staff at all levels. No previous knowledge is required.
If you use the internet as part of your day to day work then you may also be interested in taking our Cyber Security Training.
If you don’t work in education and are part of another organisation, then you should take our Data Protection Training Course instead.
On successful completion of the course you will be sent a quality assured certificate through the post the next working day. This can be used to provide evidence for compliance and audit.
All of our courses are accredited by the CPD Certification Service as conforming to universally accepted Continuous Professional Development (CPD) guidelines.
This certificate does not have an expiry date. However, based on industry best practice guidelines, the recommended renewal period for this training is 2 years. We will print this recommended renewal date on your certificate.
Screenshots (click to view)
If you wish to try this course then register for a demo by clicking the 'interactive demo' button. You will be given the option to purchase and continue with your course at the end of your demo!
Interactive Demo »
The course is divided into five accessible, interactive modules and includes an assessment at the end:
Download Course Overview (PDF) »
- Introduction to Data Protection and the GDPR - what is data protection? Key definitions, GDPR – what is it? What’s changed? Will Brexit affect it? The Data Protection Act 2018 and a case study.
- The Principles of Data Protection - fair, lawful and transparent processing, purpose limitations, data minimisation, accuracy, data retention and storage, sharing data, data security and accountability.
- Legal Grounds for Processing and Obtaining Consent - collecting data, performance of a contract, legal compliance, vital interests and public interest, legitimate interests, obtaining consent, photographs, CCTV and biometrics, methods for obtaining consent, withdrawing consent and existing consent.
- Data Subject Right - looks at what to expect during the diagnosis process, topics include seeing a GP, the watchful waiting process, getting an assessment, and how the diagnostic process works for adults who may have ADHD.
- Data Protection Responsibilities - who has responsibility for data protection? Data controllers, data processors, data protection officers, data protection by design and default, data security, reporting breaches, transferring data and consequences of non-compliance.
Aims of the Course
By completing this course, you will:
- Understand the key terms used in data protection law.
- Understand their school's responsibilities under the GDPR and the Data Protection Act.
- Have knowledge of the principles of data protection that all schools must adhere to.
- Understand the lawful grounds for processing personal information.
- Understand how to obtain consent from data subjects.
- Have an understanding of data subject rights, including access rights and the right to be forgotten.
- Recognise the responsibilities of data controllers, data processors and data protection officers.
- Understand how to ensure data security and report personal data breaches.
- Be familiar with the consequences of non-compliance.
The online assessment is taken on completion of the training material. You will
be asked 20 multiple choice questions with a pass mark of 80%. The
answers are marked automatically so you will instantly know whether you have passed.
If you don't pass don't worry! You can take the test as many times as you need with
no extra charge.