If you're looking for a job description and personal specification to help you recruit a DPO, take a look at our template.
Who you can appoint to the role
All schools are required to have a data protection officer (DPO) under the UK General Data Protection Regulation (UK GDPR).
Your DPO should be someone in your school or an external data protection adviser. The person is responsible for monitoring data protection compliance and has the knowledge, support and authority to do so effectively.
Your DPO must:
- Be independent
- Have an expert understanding of UK data protection law
- Report directly to the highest management level of the school, which would usually be the board of governors or trustees
- Have adequate resources to carry out their role
Hire a full-time or part-time DPO Take a look at our model job description and person specification to help you find the best candidate for the job. You'll need