Go back

Department for Education rapped over GDPR breach

Lack of awareness among staff puts department at risk of further legislation breaches, review finds

The Department for Education has said that it takes the handling of personal data “extremely seriously” after the Information Commissioner’s Office found that it was in “direct breach” of the General Data Protection Regulation.

The ICO carried out a compulsory audit of the department in February and March this year, after concerns were raised over the National Pupil Database in 2019. It found that the department could not “demonstrate accountability” to the GDPR, which became law in May 2018, and that there was “no central oversight of data-processing activities”.

This article on Research Professional News is only available to Research Professional or Pivot-RP users.

Research Professional users can log in and view the article via this link

Pivot-RP users can log in and view the article via this link.