{"id":3684,"date":"2020-02-25T05:55:33","date_gmt":"2020-02-25T05:55:33","guid":{"rendered":"https:\/\/seersco.com\/blogs\/?p=3684"},"modified":"2024-09-19T06:35:53","modified_gmt":"2024-09-19T06:35:53","slug":"importance-of-data-protection-for-schools","status":"publish","type":"post","link":"https:\/\/seersco.com\/blogs\/importance-of-data-protection-for-schools\/","title":{"rendered":"Breaking news: ICO Audits 360 schools. But all get &#8220;F&#8221; for fail."},"content":{"rendered":"<p><strong>[ BREAKING NEWS: ]\u00a0 360 schools have been audited by the Information Commissioner\u2019s Office (ICO). Unfortunately NOT one of the schools were able to secure an &#8220;excellent&#8221; compliance rating with the General Data Protection Regulation (GDPR).\u00a0<\/strong><\/p>\n<p>Which is worrying, to say the least.<\/p>\n<p>The <strong>ICO audit<\/strong> was looking at the principles underlying GDPR.<\/p>\n<p>Namely, governance and accountability, data sharing, training plus awareness, requests for personal data and portability.<br \/>\nThese principles are at the heart of Data Protection &amp; GDPR compliance. Failure to provide these translates into a &#8220;F&#8221; for failure to be <a href=\"https:\/\/seersco.com\/articles\/gdpr-compliance\/\">GDPR compliant<\/a>.<\/p>\n<p>The best rating achieved by a school from this set of 360 schools was only<strong><em> \u2018reasonable\u2019,<\/em> <\/strong>while many were at the <strong><em>\u2018limited\u2019<\/em> <\/strong>score for the GDPR Compliance.<\/p>\n<p><strong>GDPR has been legally enforceable since 2018.<\/strong><\/p>\n<p>At the outset in May 2018 some schools took some positive steps, in the beginning, to work towards compliance but since the media died down &#8211; there has been little progress.<\/p>\n<p>Many of these schools who failed, seem to lack a full understanding of their role and also their Legal obligations to protect sensitive data, those putting themselves and their students at risk&#8230;<\/p>\n<p>Data breaches and hacking are unfortunately a reality in today&#8217;s world.\u00a0\u00a0Following the correct Data Protection systems and procedures is essential.\u00a0Some of these schools found with \u2018inadequate\u2019 grading have become the subject of small fines.<\/p>\n<p>Better understanding, corporate and school culture and <strong>training with staff<\/strong> at the ground level is needed for full accurate GDPR compliance.<br \/>\nto ensure GDPR compliance, putting the <strong>policies, procedures &amp; systems<\/strong> in place is not enough.<\/p>\n<p>Training staff who are handling data at the ground level is a necessity, to ensure that\u00a0everything is implemented\u00a0properly.<\/p>\n<p>Compliance should be understood as an ongoing process, so regular audits of the processing activities and ensuring\u00a0staff understand their obligations are crucial.<\/p>\n<p>Around 380 schools in MATs have been inspected.\u00a0\u00a0 Unfortunately, no disposal or <strong>data processing<\/strong> and storage policies are defined in most of these.<\/p>\n<p>&#8230;Ouch!<\/p>\n<p>The ICO checks for proof of compliance in the form of policy documents, archival consent data and more.\u00a0Little is being done to provide it.<\/p>\n<p>The danger of Data breach is real.\u00a0The risks are huge.<br \/>\n&#8230;with fines are landing daily.<\/p>\n<p>So perhaps, <strong>it&#8217;s time to assess if you and your school are truly prepared?<\/strong><\/p>\n<p>Feel free to speak to an expert <a href=\"https:\/\/seersco.com\/articles\/data-protection-officer\/\">Data Protection Officer<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":4,"featured_media":3703,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"rank_math_lock_modified_date":false,"footnotes":""},"categories":[20,1],"tags":[],"class_list":["post-3684","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-megamenufull","category-uncategorized","generate-columns","tablet-grid-50","mobile-grid-100","grid-parent","grid-50","no-featured-image-padding"],"_links":{"self":[{"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/posts\/3684","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/comments?post=3684"}],"version-history":[{"count":0,"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/posts\/3684\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/media\/3703"}],"wp:attachment":[{"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/media?parent=3684"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/categories?post=3684"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/seersco.com\/blogs\/wp-json\/wp\/v2\/tags?post=3684"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}