The General Data Protection Regulation

It will make a number of changes to UK data protection law. One area of change relates to the consents that are required from individuals – alumni, donors and others – to allow your fundraising and donations team to contact them.

The Information Commissioner has provided some guidance on what needs to be done to comply with the new law relating to these consents:

1. Consent requires a positive opt-in.  Don’t use pre-ticked boxes or any other method of consent by default.
2. Be specific and granular. Vague or blanket consent is not enough.
3. Be clear and concise.
4. Name any third parties who will rely on the consent.
5. Make it easy for people to withdraw consent and tell them how.
6. Keep evidence of consent – who, when, how, and what you told people, and how they responded.

You need to review how your organisation obtains and records the necessary consents.  A review of your privacy policy is a good place to start.  We have already worked with some independent schools in their reviews and we are well placed to provide you with advice and assistance.

Our Independent Schools solicitors appreciate the pressures and challenges you face.  We try to really get to know the schools we advise. We focus on understanding the culture, the complexities of your school’s operations and its particular characteristics. We enjoy this aspect of building great client relationships – and we deliver effective and relevant legal advice as a result.