Skip to content ↓

Carlton le Willows Academy

Nothing but the best

How we handle personal information (GDPR)



In light of GDPR, Carlton le Willows Academy has reviewed the way we collect and handle personal information to ensure appropriate mechanisms continue to be in place to protect your privacy at all times.

As a school, we still need to collect information about our staff and students. All those details will continue to be collected, stored and disposed of in accordance with the law.

We have an updated Privacy Notice in place, which tells you why we collect and how we use your data, this is available at the bottom of this page.

Data Sheets 

In view of GDPR regulations the Academy will no longer be issuing data sheets to students for amendment or confirmation by parents/carers.   

These data sheets contain the following:

Student name
Date of birth
Student address
Persons to contact in event of emergency together with address, phone number and e mail of those with parental responsibility
Any medical conditions the Academy should be aware of.

You will have completed data sheets when your child joined the Academy and if there have been any changes since then please let us know.

It is parents/carers' responsibility to keep the Academy informed of any changes to the above details. 

Should you have any changes you wish us to be aware of please request the changes via the MCAS school app or e mail and your child’s records will be amended.

Data Protection Team 

As a member of GNET, Carlton le Willows Academy has a Data Protection team in place. They are:

Data Protection Officer: Graham Johnson

Designated Data Lead: Catherine Wilson

Information Co-ordinator: Ben Smith

Together they:

  1. Support and promote the trustees’ and governors’ commitment to an integrated, systematic, comprehensive and proactive approach to privacy and the protection of personal information at all levels.
  2. Inform and advise GNET, Carlton le Willows and Netherfield Primary Schools as to their obligations under the General Data Protection Regulation (GDPR) in relation to the way they collect and use personal information and the way they manage your privacy
  3. Monitor each organisation’s compliance with the Regulation and advise staff in relation to the management of personal information and privacy
  4. Liaise with the data protection regulator, the Information Commissioner

If you have any concerns about the way your personal information is being collected or used, or the way any of these organisations manage your privacy, please contact the team at or ring the designated data lead on 0115 956 5008.

 This does not affect your right to complain directly to the Information Commissioner.