Phil Reynolds FCCA MAAT
- Audit and Assurance, Senior Manager and Specialist in Academies and Education
- +44 (0)330 124 1399
- Email Phil
I recently attended the Schools and Academies Show in London and sat in one of the sessions presented by the Information Commissioner’s Office (ICO) who provided an update on how the last 12 months have been for schools since GDPR came into force.
The ICO has received approximately 6-700 complaints regarding schools since GDPR came into force. Most complaints centre around Subject Access Requests (SAR), inappropriate disclosures of data, security and transparency.
The ICO also flagged that cyber attacks are increasing, especially as a result of phishing emails. Therefore they encouraged schools to consider training staff to make them more aware of phishing emails to avoid issues arising. Our recent article on cybercrime also stressed this.
One member of the audience also raised the issue were a SAR is received but cannot be fully complied with due to summer holidays and staff being unavailable. The ICO confirmed that there is no exemption available in these instances and therefore the request must be dealt with. However, the following tips were provided:
GDPR is now here and here to stay, so schools should look to continuously review and monitor their systems, performance and reporting.
Join over 8000 businesses and individuals who receive our complimentary e-bulletins by signing up here.
Share this article
Our complimentary newsletters and event invitations are designed to provide you with regular updates, insight and guidance.
You can unsubscribe from our email communications at any time by emailing unsubscribe@krestonreeves.com or by clicking the 'unsubscribe' link found on all our email newsletters and event invitations.