Data Protection (UK GDPR)

The UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 set out how organisations must handle personal data. These laws give individuals rights over their personal information and place obligations on organisations to process data lawfully, fairly and transparently.

Your rights

Under UK GDPR, individuals have the right to:

• Be informed about how their data is used
• Access their personal data
• Have inaccurate data corrected
• Have data erased (in certain circumstances)
• Restrict processing
• Data portability
• Object to processing
• Rights relating to automated decision-making and profiling

How we use your information

Details of how the Trust processes personal data can be found in our Privacy Notices.
Our Data Protection Policy is available on request.

Contacting the Data Protection Officer

If you have any queries about how the Trust handles personal data, or if you wish to exercise your rights (including submitting a Subject Access Request), please contact our Data Protection Officer (DPO):

Email: dpo@smartacademies.net

Data Protection Complaints

If you have concerns about how we handle your personal data, you have the right to make a complaint.

Complaints should be sent to our Data Protection Officer using the contact details above.

The Trust will:

• Acknowledge your complaint
• Investigate the issue in a proportionate and timely manner
• Provide a response outlining the outcome

If you are not satisfied with our response, you have the right to complain to the Information Commissioner’s Office (ICO).

ICO Registration