Print

Print

The majority of schools in Leicester are still maintained so we are trying to give guidance.  We have run free training sessions for Heads and Business Managers and will be offering something for governors in the New Year.

 

We are putting together a set of documents for them which hopefully will be finalised over Christmas: updated DP policy, guidance, Info Asset Register template, draft ROPA, contract clauses and data processing agreement clauses, DPO job description, data breach reporting procedure etc. Happy to share these once they are ready.

 

We are unable to offer a DPO traded service due to resource constraints. We’ll continue with a limited IG traded service for those signed up. One of our local county councils was looking at if they could offer DPO traded service but not sure how that will progress. (Not knowing if the amendment to the DP Bill about taking schools out of being a  PA is not helpful of course!)

 

Lynn

 

From: This list is for those interested in Data Protection issues [mailto:[log in to unmask]] On Behalf Of Chris Spray
Sent: 07 December 2017 20:01
To: [log in to unmask]
Subject: Re: [data-protection] GDPR, Local Authorities and Schools

 

On a similar note, a colleague of mine is a secondary school governor and asked me this week if I knew of any GDPR guidance aimed at schools. Her school’s local council are doing nothing to support them. Whilst the council may have no legal responsibility to help in this regard surely they want to help the schools that come under their umbrella? Perhaps the issue is resource availability - I don’t imagine any council or school has the spare money lying around to spend on the current data protection consultant day rates.

 

If anyone knows of free, meaningful, guidance aimed at schools do share it because I can’t find any.

 

As an aside, assuming maintained schools and academies are “public authorities” where are 21,000 schools going to find suitably experienced DPOs as per GDPR requirements/Art. 29 guidance? Are any local councils (considering) offering their schools an outsourced  DPO service?

 

Regards

 

 

Chris

 

 

From: This list is for those interested in Data Protection issues [mailto:[log in to unmask]] On Behalf Of Mansfield, Tom
Sent: 07 December 2017 11:00
To: [log in to unmask]
Subject: [data-protection] GDPR, Local Authorities and Schools

 

Dear All,

 

I wanted to just quickly check with colleagues in local authorities or schools (or if you have an opinion!) and see where they stood on the DP relationship between schools and councils in relation to GDPR responsibilities.

 

Broadly speaking, I have always treated schools as separate data controllers and thus responsible for their own DPA compliance. We provide commercial HR/payroll and IT support (i.e. they outsource these back to the council) but this has not covered Data Protection support unless a school phones me directly with a query.

 

However, I have had a lot of schools contact me asking what the Council are doing to help them with GDPR preparation. Till now my answer has been, ‘nothing specific’, as responsibility lies with the school. Some links to good material to read has been provided as part of our Schools bulletin but no direct support. However as part of my GDPR programme management I have been asked to check what other authorities are doing in relation to GDPR support for schools. One colleague has suggested that we have a duty of care to the schools and the pupils and therefore to support them with GDPR implementation. Though I disagree, I’m interested in peoples thoughts on the matter.

 

Many thanks,

 


Tom

 

 

Dr Tom Mansfield

01296 383832

Data Protection and Information Governance Officer

Head Quarters and Business Services Plus

Business Intelligence

Buckinghamshire County Council

 

 

Image removed by sender. Survey
The Mobile Library Service Consultation is open until 31 December 2017 for your feedback

Complete the survey here.

Buckinghamshire County Council

Visit our Web Site : http://www.buckscc.gov.uk

Buckinghamshire County Council Email Disclaimer

This Email, and any attachments, may contain Protected or Restricted information and is intended solely for the individual to whom it is addressed. It may contain sensitive or protectively marked material and should be handled accordingly. If this Email has been misdirected, please notify the author or [log in to unmask] immediately. If you are not the intended recipient you must not disclose, distribute, copy, print or rely on any of the information contained in it or attached, and all copies must be deleted immediately. Whilst we take reasonable steps to try to identify any software viruses, any attachments to this Email may nevertheless contain viruses which our anti-virus software has failed to identify. You should therefore carry out your own anti-virus checks before opening any documents.

Buckinghamshire County Council will not accept any liability for damage caused by computer viruses emanating from any attachment or other document supplied with this email.

All GCSx traffic may be subject to recording and / or monitoring in accordance with relevant legislation.

The views expressed in this email are not necessarily those of Buckinghamshire County Council unless explicitly stated.

This footnote also confirms that this email has been swept for content and for the presence of computer viruses.

All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html

Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):

All user commands can be found at https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html and are sent in the body of an otherwise blank email to [log in to unmask]

Any queries about sending or receiving messages please send to the list owner [log in to unmask]

(Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)

All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html

Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):

All user commands can be found at https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html and are sent in the body of an otherwise blank email to [log in to unmask]

Any queries about sending or receiving messages please send to the list owner [log in to unmask]

(Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)

All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html

Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):

All user commands can be found at https://www.jiscmail.ac.uk/help/subscribers/subscribercommands.html and are sent in the body of an otherwise blank email to [log in to unmask]

Any queries about sending or receiving messages please send to the list owner [log in to unmask]

(Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)