Supporting Businesses Through COVID-19
We want to reassure customers that all of our training courses are still available online and we are here to support our learners.
We've developed a range of courses and free resources to help our customers stay safe, effective and engaged during the COVID-19 pandemic.

Data Protection for Schools

Data Protection for Schools
£ 25 +VAT

Under the Data Protection Act 2018 and the GDPR, all schools are classified as data controllers. This means that they should appoint a data protection officer and ensure compliance with the law for all data processing activities. Schools hold large amounts of personal information, whether it’s about pupils, members of staff, parents, governors or visitors, and it’s essential that you take responsibility for how you obtain, store, share and use people’s personal details.

This Data Protection for Schools course explains what your responsibilities are under the UK data protection law and the EU GDPR, and will help you understand the steps you should take to ensure that your school’s data processing activities are secure and legally compliant.

  • Developed by a qualified legal professional
  • Accredited by CPD
  • Fully online course and assessment with no time limits
  • Full audio voiceover
  • Approximate duration: 2 hours
  • On completion, certificate is posted the next working day

Who Should Take This Course?

All schools are data controllers and process large amounts of student, staff and parent data, so all members of staff must understand how to process that data securely and in line with the law. Data Protection for Schools is aimed at anyone who works in a school environment and is suitable for staff at all levels. No previous knowledge is required.

If you use the internet as part of your day to day work then you may also be interested in taking our Cyber Security Training.

If you don’t work in education and are part of another organisation, then you should take our Data Protection Training Course instead.


CPD Approved

All of our courses are accredited by the CPD Certification Service as conforming to universally accepted Continuing Professional Development (CPD) guidelines.

On successful completion of the course you will be sent a quality assured certificate through the post the next working day. This can be used to provide evidence for compliance and audit. 

This certificate does not have an expiry date. However, based on industry best practice guidelines, the recommended renewal period for this training is 2 years. We will print this recommended renewal date on your certificate.

Meet Our Experts

High Speed Training is proud to work with experts in education to create content that is up to date, relevant and practical. By taking a course with us, you can be confident that you and your staff will have the knowledge to safely carry out your jobs using best industry practice.

Screenshots (click to view)

If you wish to try this course then register for a demo by clicking the 'interactive demo' button. You will be given the option to purchase and continue with your course at the end of your demo!

  Interactive Demo

Course Content

1Introduction to Data Protection and the GDPR

What is data protection? Key definitions, GDPR – what is it? What’s changed? Will Brexit affect it? The Data Protection Act 2018 and a case study.

2The Principles of Data Protection

Fair, lawful and transparent processing, purpose limitations, data minimisation, accuracy, data retention and storage, sharing data, data security and accountability.

3Legal Grounds for Processing and Obtaining Consent

Collecting data, performance of a contract, legal compliance, vital interests and public interest, legitimate interests, obtaining consent, photographs, CCTV and biometrics, methods for obtaining consent, withdrawing consent and existing consent.

4Data Subject Right

Looks at what to expect during the diagnosis process, topics include seeing a GP, the watchful waiting process, getting an assessment, and how the diagnostic process works for adults who may have ADHD.

5Data Protection Responsibilities

Who has responsibility for data protection? Data controllers, data processors, data protection officers, data protection by design and default, data security, reporting breaches, transferring data and consequences of non-compliance.

 Download Course Overview (PDF)

Aims of the Course

By completing this course, you will:

  • Understand the key terms used in data protection law.
  • Understand their school's responsibilities under the GDPR and the Data Protection Act.
  • Have knowledge of the principles of data protection that all schools must adhere to.
  • Understand the lawful grounds for processing personal information.
  • Understand how to obtain consent from data subjects.
  • Have an understanding of data subject rights, including access rights and the right to be forgotten.
  • Recognise the responsibilities of data controllers, data processors and data protection officers.
  • Understand how to ensure data security and report personal data breaches.
  • Be familiar with the consequences of non-compliance.


The online assessment is taken on completion of the training material. You will be asked 20 multiple choice questions with a pass mark of 80%. The answers are marked automatically so you will instantly know whether you have passed. If you don't pass don't worry! You can take the test as many times as you need with no extra charge.

Course Reviews

Other Courses You May Be Interested In

Fire Safety for Schools
Fire Safety for Schools
£ 30.00 + VAT

An online course designed to teach people who work in a school setting how to follow their school's fire safety measures, minimise risks, and follow evacuation procedures.