The General Data Protection Regulations (2018)
On the 25 May 2018, the new EU General Data Protection Regulations (GDPR) came into force. The GDPR is a law designed to enhance data protection for EU residents and provide a framework for organisations and businesses with how they handle and process personal data.
The GDPR protects the personal data of individuals residing within the EU area, even if they themselves are not EU citizens. The regulations not only restrict organisations within the EU, any company worldwide that handles, stores and/or processes personal data of an EU resident must also comply. Fines for non-compliance are significant and can be up to 4% of worldwide turnover or 20,000,000 EUR whichever is the greater.
Bromley Trust Academy and our parent organisations (London South East Academies Trust and London & South East Education Group) have always taken the security of personal data very seriously, are committed to complying with the GDPR and have spent considerable time analysing our data inventory and business processes and identifying change where needed to remain compliant. All staff at our academies have undergone training for the GDPR and their understanding tested.
Please use the menu to the right to find out more about the GDPR and what we are doing to address the new regulations.
