Data Protection Law controls what the Potteries Educational Trust does with the personal information provided by individuals who work for us, study with us or access our services.
Our Privacy Statements describe what we do with the personal information we are provided with by members of the public. You may be asked to give us personal information to answer an enquiry you have. You may also be asked to provide personal information when you become an applicant or student, are a client or wish to use the services we offer across our Academy Trust.
If you provide us with information, it will only be used in the ways described in our Privacy Statements. Our statements will be updated from time to time and the latest version will always be published here on our website.
- BHS Privacy Statement for-Students and their Families
- BHS Privacy Statement for Staff
- SFC Privacy Statement for Students
- COVID-19 Privacy Statement
The Potteries Educational Trust is a Data Controller registered with the Information Commissioner’s Office (ICO) (Registration number ZA290779). All members of the Potteries Educational Trust operate within the Data Protection arrangements agreed by Trustees.
All written correspondence in relation to Data Protection should be addressed to:
The Information Office
The Potteries Educational Trust
The City of Stoke-on-Trent Sixth Form College
The Data Protection Officer, appointed by the Board of Trustees to provide independent assurance over the governance and management of data protection is Anthony Gribben-Lisle.
Please click here to send any communication for the attention of the Data Protection Officer.
The Data Protection Act (2018) and our Trust Data Protection Policy, gives any individual the right to obtain confirmation if their data is being processed by us and to have access to the personal data we hold. The right of access to this information is referred to as Subject Access Request (SAR).
We aim to provide access to personal data within one month of receipt of a subject access request. If a request is complex, an extension of up to a further two months may be requested from the individual making the request. The Data Protection Officer, or a member of our team, will communicate regularly with individuals where this is the case.
A copy of the information will be provided free of charge. However, a reasonable fee may be charged if a request is found to be excessive, or where information is requested repeatedly. We will always notify the individual making a request if we intend to make a charge, and why.
Subject access requests will be accepted from:
- The individual whose data is being requested (also known as the Data Subject).
- A representative of the Data Subject who has written consent (e.g. a parent; a solicitor; a court appointed representative if the Data Subject could no longer manage his or her own affairs; a person with enduring Power of Attorney).
- The parent or guardian of a child under 16 years of age: In cases where the child agrees, or it is in the child’s best interest for access to the data to be given.
Please note that we will use reasonable means to verify the identity of the individual making the request, but may require individuals to visit one of our academies with proof of their identity in order to receive copies of access request responses.
One of the key principles which underpins UK Data Protection Law is the right of an individual to request the deletion or removal of personal data where there is no compelling reason for its continued processing. This is also known as the ‘right to be forgotten’.
Individuals may have a right to have personal data erased and to prevent processing in specific circumstances such as:
- Where the personal data is no longer necessary in relation to the purpose for which it was originally collected/processed.
- When the individual withdraws consent.
- When the individual objects to the processing and there is no overriding legitimate interest for continuing the processing.
- Where the personal data was unlawfully processed (i.e. otherwise in breach of the Data Protection Act).
- The personal data must be erased to comply with a legal obligation.
Please note that the right to erasure does not provide an absolute ‘right to be forgotten’. Under Data Protection Law the Trust can refuse to comply with a request for erasure where the personal data is processed for particular reasons. This will always be explained to you by our Data Protection Officer if your request cannot be carried out.
Can I speak to the Data Protection Officer before I make a Subject Access Request or Request for Erasure?
Yes. We take all concerns and questions relating to data protection, use of personal information and the experience of our children and young people with the utmost importance. If you would like to speak to the Data Protection Officer with a question or concern before making a formal request, please do not hesitate to contact them by e-mail or by contacting the Clerk and Company Secretary to the Trust, Mrs Sue Hawley.