
With winter-term drawing in, many schools are facing increasing challenges. To help in these unusual times, Judicium offers a range of free 'On the Sofa' Sessions. These online sessions are designed to foster collaboration and networking. An informal setting where senior leaders from various education settings can connect, share practical strategies - and their questions can be answered.
This blog is based on Judicium's GDPR 'Sofa Session' from 21st of October 2020, with our Resident expert Craig Stillwell LLB (Hons), LPC.
Data Retention
Schools tend to have good practice when it comes to physical data retention, with many regularly reviewing old HR files and sending pupil files to secondary or further education. However, the use and management of electronical data is still a problem area. We advise the following:- Firstly, ensuring you have a retention policy & staff know key guidelines around this. It is important to make sure that you tailor the guidelines to your organisation, and build staff awareness around them.
- Have a responsible person for data retention in your organisation. When someone is responsible, they will take out the time needed to deal with the data retention. Creating that element of responsibility will mean that it is addressed and looked at in regular intervals.
- Thirdly, having clear deletion dates for electronic data. We must keep data for no longer than is necessary. Electronic data is stored on a higher volume and more frequently, so strong retention rules are key. Use your IT provider and look at automation deletion options to help limit staff time spent, deleting emails etc.
- Finally, we recommend that when people are deleting and restoring data, they should log what and when they have done so. Keeping a record or log of this is good practice. The log doesn’t not need to contain each item destroyed, a summary of say ‘financial records 2018-2019’ is adequate.
School email addresses
Training
We should be making sure that staff across the board are properly trained in how to handle data. Senior staff, who deal with more data, should be trained more intensely. It is about putting the appropriate measures in place for the appropriate people. We suggest to do a refresher training every 2 years, especially now that people are working from home more. It also helps with keeping awareness of data breaches high. Most data breaches are down to human error and can be prevented with awareness, which is why appropriate training is so important.
Security and home working
- Encrypted laptops are recommended but might not be practical and too expensive. As a compromise you can provide senior staff member with encrypted laptops, because they often deal with more sensitive data.
- Are you happy with who has access to the files? Electronical data can also be restricted and access can be given to specific members of staff. Using platforms on the cloud such as google drive etc.
- Do you have appropriate security on how people can access data from home? For example, two factor authentications to access an internal drive or when using encrypted memory sticks.
Here at Judicium, we are seeing a rise in breaches across all area within the school, especially with misdirected emails. With staff transitioning between school and home working, it is important to review policies, look at refresher training and begin discussions surrounding retention of data in general as we return after half term.
If you require any support in any of these steps, or would like to talk to someone surrounding some support for your school please do not hesitate to call us on 0845 459 2130 or email tara.jones@judicium.com.
Related content
.png)
This blog is based on Judicium’s SEND ‘Sofa Session’ from the 26th of March, with our resident expert Rik Chilvers.
(1).png)
This is a summary taken from Judicium’s DPO ‘Sofa Session’ from 19th March, with our Data Protection Consultant Falguni Bhatt.
.png)
This blog is based on Judicium’s Health and Safety ‘Sofa Session’ from the 12th of March, with our resident expert Mike Wright.
.png)
These are the most frequently asked questions taken from Judicium’s Employment Law ‘Sofa Session’ from the 5th of March with Employment Law & HR Consultants Jenny Salero, LL.B (Hons), L.P.C., Kelly Rayner, LL.B (Hons), QLTT and Suzanne Ravenhall, Chartered MCIPD.

This blog is based on Judicium’s Health and Safety ‘Sofa Session’ from the 26th of February, with our resident expert Loretta Igbe.

UK schools are facing a rise in SEND-related Subject Access Requests (SARs) from parents seeking information on their child's education, creating legal and administrative challenges that can be managed through clear policies, staff training, expert guidance, and proactive communication.
Sofa Sessions | SEND