Privacy Policy

Notre Dame High School, Sheffield

Privacy Notice for School Visitors to the Notre Dame school website (www.notredame-high.co.uk)

 

Hallmark: We honour the dignity and sacredness of each person.

This statement should be read in conjunction with the Data Protection policy.

This statement is intended to provide information as to how we will collect, use or process personal data submitted to our website.

Responsibility for Data Protection

Notre Dame High School is registered with the Information Commissioner’s Office. The registration number is Z8538235.

The Data Protection Officer (DPO) for the school is John Coats. The DPO can be contacted on data@notredame-high.co.uk or 0114 2302536.

The Data Protection Act 1998: Why do we collect and use information on our website?

 

By visitors we mean those people who visit the school website, who are not directly employed or who are not enrolled students of Notre Dame High School. This includes staff from other schools, school governors, volunteers, and the general public. We collect and use the information submitted under the following Articles of the General Data Protection Regulations (GDPR)

Article 6:

Processing shall be lawful only if and to the extent that at least one of the following applies:

6 (1) a. The data subject has given consent to the processing of his or her personal data for one or more specific purposes;

6 (1) e. Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller.

For the avoidance of doubt, throughout this document we are using and applying the GDPR definition of consent, namely “any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative actions, signifies agreement to the processing of personal data relating to him or her.”

If you use this website to contact us we use the data you submit to:

  • Respond to your query;
  • Provide us with anonymous statistics on queries received.;
  • Maintain a record of queries received.

The categories of information that we collect and hold include:

  • Name;
  • Date of communication;
  • Your email address;

Storing school visitor information

  • Unless stated below we hold may hold a record of your query for upto 6 years after the date of the enquiry.

Who do we share website communications information with?

 

  • We do not share website information.

Internet Cookies

Internet cookies are used by our website for the purposes of creating a better user experience (ie remembering any preferences you may choose) and for anonymous statistical tracking. Our web site will still work if cookies are declined by your web browser.

Requesting access to your personal information

 

Under data protection legislation, a website visitor has the right to request access to information about them that we hold. This is referred to as a Subject Access Request (SAR). The GDPR clarifies that the reason for allowing individuals to access their personal data is so that they are aware of and can verify the lawfulness of the data processing. To make a request for your personal information, contact the Data Protection Officer.

You also have the right to:

  • Object to processing of personal data that is likely to cause, or is causing, damage or distress;
  • Prevent processing for the purpose of direct marketing;
  • Object to decisions being taken by automated means;
  • In certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed; and
  • Claim compensation for damages caused by a breach of the Data Protection regulations.

To make a SAR, or to exercise any of your rights under data protection regulation, you should contact the Data Protection Officer at the school.

On receipt of a request to exercise any of your rights under data protection regulation, the school will:

  • Respond to acknowledge receipt of your request;
  • Request proof of identify of the person making the request;
  • Inform you as to whether there are any statutory reasons why we may be unable to respond to your request;
  • Act in accordance with the GDPR in terms of our actions in response to your request, and with due regard to the timescales set out in the GDPR.

If you have a concern about the way we are collecting or using your personal data, you should raise your concern with us in the first instance or directly to the Information Commissioner’s Office at https://ico.org.uk/concerns/

If you require more information about how we and/or DfE store and use your personal data please visit:

If you want to see a copy of information about you that we hold, please contact the Data Protection Officer.