The General Data Protection Regulation (GDPR) came into force on 25 May 2018 and is incorporated into UK law through the Data Protection Act 2018.
At EdIntervention, effective information governance forms an integral part of our safeguarding responsibilities. We recognise that the lawful, secure and appropriate handling of personal information is essential to protecting children, young people and adults, and to maintaining trust with families and partners. A Data Protection Officer is in place, and we maintain clear, up-to-date policies and procedures to ensure compliance with data protection legislation.
Data protection responsibilities are embedded across the organisation and linked directly to safeguarding practice. Staff receive appropriate guidance and training to ensure personal data is handled lawfully, proportionately and confidentially, and that information is shared responsibly in line with safeguarding duties and statutory guidance.
Further details on how we collect, use, store and protect personal data are set out in the policies below. Any questions or concerns regarding data protection, information governance or the handling of personal information can be directed to the Data Protection Officer at DPO@wearehy.com
Data Protection Policy
Download
Information Security Policy
Download
Records Management Policy
Download
Retention Policy
Download
Subject Access Request Policy
Download
Data Breach Policy
Download