GDPR And Your School

GDPR, the General Data Protection Regulation, is the a set of guidelines that went into effect on May 25, 2018. It dictates how individuals, companies, and schools may acquire, utilize, store, and delete the personal data of European Union (EU) users.

These regulations cover both on-line and internal data processing systems.

You’ll find information here on explaining GDPR and how it affects your school and classroom, how it’s enforced, and what you can do to make your web site(s) and internal systems GDPR complaint.

This page is mainly aimed at people outside the EU who are trying to understand GDPR and its compliance.

When in doubt, check with your IT or legal department to see what policies are in place for your school.

Filters:
resource URL thumbnail

Explaining the GDPR to an American

Here's a good explanation of how the GDPR views personal data vs. how companies & schools have traditionally thought of personal data. From the article... First, we need to get used to the term "personal data" instead of "PII" (personally identifiable information). Personal data is much broader than PII — it applies to anything that…  learn more

resource URL thumbnail

GDPR Breach Notification Checklist

While this article is on the technical side, it lays out a number of steps you or your school IT people can take ahead of time to be prepared for a data breach. Think you don't need a plan? What happens when some student gets into the school systems and changes everyone's grade? Data breaches…  learn more

resource URL thumbnail

GDPR features & 5 steps to compliance

This video gives a quick 3 minute overview to what the GDPR is and why it's a good thing for consumers, and 5 things to consider to become GDPR compliant.  learn more

resource URL thumbnail

How the EU can fine US web sites

This article looks at the GDPR and answers the question of how the EU can fine a U.S. based web site. The short answer is that "EU regulators can fine U.S. companies for violating GDPR, and they can do it [only] with the help of U.S. authorities." The odds of your local school or classroom…  learn more

resource URL thumbnail

How to Update Your Existing Privacy Policy for GDPR Compliance

When working toward compliance with the GDPR, one of your first tasks will probably be to update your Privacy Policy document to meet the new standards. If you do not have one, now is a good time to create one. Every organization and web site should have a written Privacy Policy. This article covers items…  learn more

resource URL thumbnail

What does GDPR mean for U.S. education?

This article posits that both K-12 and higher education institutions across the United States should be prepared for GDPR — the European Union's new General Data Protection Regulation — which went into effect May 25. Many U.S. educators and administrators don't think GDPR affects them because they live outside Europe. However, any time an educator…  learn more

Which persons are covered under the GDPR?

The GDPR rules apply to everyone who interacts with or has data stored on your web sites or internal systems. This includes current and former students, parents, teachers, staff, administrators, outside vendors and contractors. The GDPR rules apply to everyone.  learn more

resource URL thumbnail

WordPress and GDPR Compliance

This post includes general information for how the GDPR affects small websites and the steps needed to stay compliant. While some of the suggestions are specific to WordPress, most of the information can be applied to any school or personal web site.  learn more

resource URL thumbnail

Your 8 rights according to GDPR

This post by Punit Bhatia details the eight data subject rights defined in the GDPR. They are the ... right to information right to access right to rectification right to withdraw consent right to object right to object to automated processing right to be forgotten right for data portability  learn more