GDPR Update February 2018

We are sure that GDPR is likely to be high on your agenda and with over 6000 schools now using CPOMS it has certainly been high on ours as we prepare for the new legislation which comes into effect on 25th May 2018.

CPOMS is committed to compliance with all relevant EU and Member State laws in respect of personal data, and the protection of the rights and freedoms of individuals whose information we collect and process in accordance with the General Data Protection Regulation (GDPR).

In terms of GDPR, if you take a look at the Information Commissioners website https://ico.org.uk/about-the-ico/ico-and-stakeholder-consultations/children-and-the-gdpr-guidance/ you will note that guidance is still being issued so at the moment no organisation can state that it is fully GDPR compliant. However CPOMS is well advanced and we will be GDPR compliant by 25th May 2018.

CPOMS is currently registered with the Information Commissioners Office (ICO) for Data Protection and in addition we also hold ISO27001 Accreditation and are Cyber Essentials Accredited. As part of our continuing preparations, we have already undertaken an exercise with our external auditors to identify what measures need to be in place by May 2018. The scoping exercise has been completed and we are implementing their final recommendations.

As part of the process of moving forward, we will issue all of our schools with a new contract, the terms of which will be updated to reflect a GDPR landscape. This of course cannot be done until legislation is finalised but we will keep you fully updated and expect to be communicating again in forthcoming weeks.

Should you have any further questions in this regard then please do not hesitate to contact us via your normal support channels.