The new General Data Protection Regulation (GDPR) that comes into effect on May 25, 2018.
Not only is GDPR a major step in protecting the fundamental right to privacy, it also raises the bar for data protection, security, and compliance in the industry. Frog Education Ltd has worked in education for 20 years and already has many robust procedures in place, as you would expect from any credible business working in this sector. Staff are all DBS cleared and fully trained on the use and handling of data. These have been further enhanced following a full review all our security and data policies, working with external specialists Ward Hadaway to review contracts, terms and conditions and internal policies.
Also, as a business, we are Cyber Essentials Plus certified. This qualification has huge cross over with the GDPR best practice and will help ratify and recognise that the procedures and controls we have in place are secure and compliant.
To help you understand what this means for you, and the steps we have taken to ensure the protection of personal data, we have created a FAQ document to help you understand GDPR and how it affects you as a Frog Education customer.
We have received many questionnaires from our schools about GDPR, and unfortunately responding to each individually would be impractical. The information linked from this page should give you all the information you require.
You can find information relating to frequently asked questions on the following page...
If you have any specific questions on GDPR, please do not hesitate to contact us on 01422 250800 or email firstname.lastname@example.org and we will be happy to go into more detail and answer any queries directly.
DfE toolkit on GDPR
A useful document provided by DfE but not widely known. This toolkit offers advice and steps to follow in your school:
Frog Education is registered with the ICO | Our registration number is Z706603X
Guidance from ICO
Useful links to ICO and their advice specifically regarding children’s data, children giving consent and working with third parties on data processing: