UPDATE POST BREXIT JANUARY 2021:

Since leaving the EU in January 2021, our Statement of Intent has been amended to relect this.  The paragraph below now replaces any policies ratified pre-January 2021 and this will be included in any policies going forward:

Statement of intent 

Throughout this document we refer to Data Protection Legislation which means the Data Protection Act 2018 (DPA2018), the United Kingdom General Data Protection Regulation (UK GDPR), the Privacy and Electronic Communications (EC Directive) Regulations 2003 and any legislation implemented in connection with the aforementioned legislation. Where data is processed by a controller or processor established in the European Union or comprises the data of people in the European Union, it also includes the EU General Data Protection Regulation (EU GDPR). This includes any replacement legislation coming into effect from time to time. 

The Pegasus Partnership Trust aims to ensure that all personal data collected about staff, pupils, parents, governors, visitors and other individuals is collected, stored and processed in accordance with the legislation mentioned above. 

The Pegasus Partnership Trust, from time to time, may be required to share personal information about its staff or pupils with other organisations, mainly the LA, other schools and educational bodies, and potentially social services. This policy applies to all personal data, regardless of whether it is in paper or electronic format.