You are here:

How to comply with the General Data Protection Regulation

Ref: 34119
Last updated on 31 October 2017
School types: All · School phases: All
In-depth article
Here's what you need to do to make sure your school is compliant with the GDPR, in force since 25 May 2018.

Article tools


  1. 1 Tell key people the law has changed
  2. 2 Identify what data you hold, and why you hold it
  3. 3 Appoint your data protection officer 
  4. 4 Include certain information in your privacy notices
  5. 5 Review your data processing procedures
  6. 6 Include certain information in your contracts with suppliers
  7. 7 Monitor your progress towards compliance

Article features

  • 8 external links

More from The Key

CPD Toolkit Fresh

CPD Toolkit makes it easy to run training in-house

Covering a wide range of topics, including differentiation, assessment, SEND and growth mindset, CPD Toolkit has been created by subject experts and tested by teachers to guarantee practical, engaging training that's also excellent value for money.

The Key has taken great care in publishing this article. However, some of the article's content and information may come from or link to third party sources whose quality, relevance, accuracy, completeness, currency and reliability we do not guarantee. Accordingly, we will not be held liable for any use of or reliance placed on this article's content or the links or downloads it provides. This article may contain information sourced from public sector bodies and licensed under the Open Government Licence.