LinkBack URL
About LinkBacks
Reply With QuoteAngryTechnician (1st October 2009)
Basically, I am fairly sure this is against data protection but can't find the bit that basically says it. Deputy head wants to send out a parent directory to all parents in a year group, this is to contain all address and phone numbers of all in this year (so they can ring round and organnise parties, etc etc). Is this allowed without consent? To add to it, a member of staff is also a parent so effectively we'd be publishing the teachers address and phone number too...
Cheers
Just noticed the typos in the thread title - sorry (i'm not stupid honest...)
Last edited by Ben_Stanton; 1st October 2009 at 05:26 PM.
If you print it out, and give the hard copies then the data protection act may not apply - but I'm pretty sure that sending that information out electronically is definatly against the rules.
Data protection act does apply to hard copies; you absolutely must get consent before you do this.
The school I used to work had a field in the database effectively saying "address not for publication" so it's quite easy to just print those who are happy to share their info.
You've almost certainly got some children where there are court orders preventing access by one or both parents - you could end up not just possibly breaching some bit of the DPA but being directly in contempt of court!
er - not if the data was stored electronically to begin with.
I'm fairly sure you'd need each person to agree to have their information published in such a way - have a read Data Protection Act (DPA) guidelines - Organisations - ICO
IIRC this kind of loophole was only present in the 1984 Act. The current legislation being the 1998 Act.Originally Posted by tonyd
AngryTechnician (1st October 2009)
mpe is correct; the Data Protection Act applies to all personal data held by the organisation, including data not stored electronically, and even if it was never stored electronically in the first place. Those last two parts were a key measure included in the 1998 revision of the act.
If you send such a directory out without the explicit consent of each and every person on it, it is most definitely a breach of the Data Protection Act.
Contact yout local council they may well have a data protection officer, even if your school doesn't.
The relevent issue is data regardless of how it is stored. (Including using data storage methods yet to be invented.)
Even if you get this you will also need to specify this use on your registration with the Infomation Commissioner's Office.If you send such a directory out without the explicit consent of each and every person on it, it is most definitely a breach of the Data Protection Act.
In addition there's also the matter of where the money to do any of this would be coming from.
AngryTechnician (1st October 2009)
For our pupil directory, our PTA send out a specific request letter for information. (Actually we send the letter for them using parentMail, but that's as far as it goes)
If the form isn't returned, the family is not included. We never ever use data given to the school as contact details.
As Steve pointed out you may also have families at refuges and if so you would not only be putting that family in serious risk but maybe 10 to 20 other families not even at your school.
Russ
I'm not an expert at this sort of thing, but why would a school provide names and addresses of parents for parties without an educational benefit what-so-ever.
Parents would need to give explicit consent to be part of the directory and would have let them opt into the directory rather than to opt.
It's to be a child protection issue if this data got into the wrong hands. It would be a big no from me, if I was asked that question here.
BTW is this a primary or secondary school were talking about?
Thanks
Whatever happened to parents nattering at the school gates?
Also, pupils themselves are a good form of communication.
Chunks
No just plain no... say the parents got a hard copy (either printing or by post). What then happens if its thrown in the bin? it goes outside... some dodgy people may find this info and put it to all soughts of misuse.
It's a bad idea, with very little benifit (pros) and huge dis-benifits (cons) and add to that lots of risks (cons that could or couldn't happen).
p.s yes i've been on a prince2 training course
Slightly off-topic but ... PRINCE2 ... always make me think that it is describing the pint-sized singer ... the artist formerly known as Prince but is now known as Prince ... doesn't that make him Prince2?
Back to the thread.
1 - The school has the right to use the data from the student and parents only as required to complete the purpose of the school, educating the student and ensuring the safety of the student whilst In Loco Parentis. It does not have the right to hand the information to any party that has not been explicitly granted access. The common form of granting authority for this is the Fair Processing Notice. Unless all parties agree this with all parties it cannot be done.
2 - The entry with the ICO describes how the different classes of data will be used, defining the appropriate use. You can bet it does not have a section stating it will share it with external groups who may have no requirement for it and a group which you cannot stipulate how they will use the information either (8 principles of Data Protection apply in bucket loads at this point).
3 - Common sense rules apply. Tell the Deputy that if you are going to do this then you should also give out all home addresses and contact details of staff to the parents too. I wonder how quickly the opinion changes.
While this has been an interesting thread on data protection (thank you all), I think there's a larger issue here, namely that DH slept through their CP training or just doesn't have any common sense and probably can't be trusted not to lick a frozen lamp post.
How can they even be *asking* this question?
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
