GDPR Privacy Statement


GDPR  Policy and Privacy Notice


What is it?

GDPR stands for General Data Protection Regulation which becomes law on 25 May 2018. It covers the management and control of personal information. Regardless of Britain’s plans to leave the EU, this will still be a legal requirement for all organisations.


How does this differ from the current data protection laws?

GDPR will replace the Data Protection Act 1998 and the Privacy and Electronic Communications Regulations 2003. It increases the obligations that companies have regarding personal data and focuses on rights for individuals. There is an emphasis on a more robust protection for individuals and higher penalties on organisations who fail to comply.


What is personal data?

This is classed as any data which can be linked to a single person and can identify them. Examples include a name, email address, postal address, telephone numbers, bank accounts and photos. But just an email address is not personal data unless it can be directly linked to more data that is stored somewhere else.


Does this include children’s data?

Yes it does. But it also provides an opportunity for nurseries to engage with parents and build up trust and loyalty.


In order to comply with the new legislation we have issued a GDPR privacy notice which can be found below: