Skip to content

This Website is intended for informational purposes only.

This Website is used for non-commercial purposes. In particular, this limited licence does not permit you to incorporate any material from this web site in any other work, publications or web site either of your own or belonging to any third party without the prior consent of Stepney All Saints School.

This Website is intended to provide general information on a particular subject or subjects and is not an exhaustive treatment of such subject(s). Accordingly, the information in this website is not intended to constitute any legal, consultative or other professional advice, service or contract in any way.

This website and the information contained herein is provided “as is”, and Stepney All Saints School makes no express or implied representations or warranties regarding this website or the information in it. Without limiting the foregoing, Stepney All Saints School does not warrant that the website or information in it will be error-free or will meet any particular criteria of performance or quality. Stepney All Saints School expressly disclaims all implied warranties, including, without limitation, warranties of merchantability, title, fitness for a particular purpose, non-infringement, compatibility, security and accuracy.

Your use of this website and information in it is at your own risk. You assume full responsibility and risk of loss resulting from the use of this website or information in it. None of Stepney All Saints School or its affiliates, or any partners, principals, stockholders or employees of any thereof will be liable for any special, indirect, incidental, consequential or punitive damages or any other damages whatsoever, whether in an action of contract, statute, tort (including, without limitation, negligence) or otherwise, relating to the use of this website or information contained in it.

If any of the foregoing is not fully enforceable for any reason, the remainder shall nonetheless continue to apply.

“Stepney All Saints School” and the Stepney All Saints logo (and any of the foregoing used in any combination), product names and all page headers, footers and icons are trademarks or registered trademarks of Stepney All Saints School. All other product names, Company names and logos mentioned are the trademarks of their respective owners.

Certain links in this website may lead to resources or information maintained by third parties over whom Stepney All Saints School has no control. Stepney All Saints School makes no representations or warranties as to the accuracy of, or any other aspect relating to those resources.

Privacy statement and data protection

Stepney All Saints School fully respects your right to privacy, and will not collect any personal information about you on this website without your clear permission. Any personal information, which you volunteer to Stepney All Saints School, will be treated with the highest standards of security and confidentiality, strictly in accordance with the General Data Protection Act, 2018. Stepney All Saints School does not collect any personal data about you on this website, apart from information which you volunteer (for example by e-mailing us or by using our online forms). Any information, which you provide in this way, is not made available to any third parties, and is used by the Stepney All Saints School only in line with the purpose for which you provided it.

Collection and use of technical information

Technical details in connection with visits to this website are logged by us for our statistical purposes. No information is collected that could be used by us to identify website visitors. The technical details logged are confined to the following items:

The IP address of the visitor’s web server

The top-level domain name used (for example: .com, .org, .net)

Click stream data which shows the traffic of visitors around this web site (for example pages accessed and documents downloaded)

The type of web browser used by the website visitor.

Stepney All Saints School will make no attempt to identify individual visitors from the technical details listed above, or to associate the technical details listed above with any individual. It is the policy of Stepney All Saints School never to disclose such technical information in respect of individual website visitors to any third party unless obliged to disclose such information by a rule of law. The technical information will be used only by Stepney All Saints School, and only for statistical and other administrative purposes. You should note that technical details, which we cannot associate with any identifiable individual, do not constitute “personal data” for the purposes of the General Data Protection Act, 2018.

The Data Protection Officer (DPO) is the first point of contact for individuals whose data the school processes and for the Information Commissioners Office (ICO).

The contact details for the School’s DPO are:

Name: John Pearson-Hicks

Address: London Diocesan Board for Schools (LDBS), London Diocesan House, 36 Causton Street, London, SW1P 4AU

Tel: 020 7932 1161

e-mail: john.pearson-hicks@london.anglican.org

Privacy Notice for Applicants

Data Protection – Applicant Privacy Notice
The School is a Data Controller and as such has a duty to explain to you what information is collected and why, and who, if anyone, it is shared with under the General Data Protection Regulation 2016.

We collect all the information laid out in this form, in the form of references from current and/or previous employers, and if shortlisted from the selection process. The information given to us, and collected by us will form part of the contract of employment for successful candidates. We process this information in order to:
• administer the application, shortlisting and selection process
• assess your suitability to work with children and young people
• inform the development of recruitment and retention policies
• defend legal claims
• fraud detection and prevention
• monitor protected characteristics in order to promote equality at work

No decisions are based on automated decision making.

We process this information about you because the processing is necessary for us to enter into an employment (or other work-related) contract with you. We also need to process this information to ensure that we are complying with our legal obligations under the Employment Act and with the DfE
statutory guidance document, Keeping Children Safe in Education, as well as other school specific legislation.

We have a legitimate interest in processing data from job applicants in order to administer the recruitment process, to monitor compliance with our policies, to defend any legal claims and to ensure that the most suitable applicant is appointed to the role, based on an assessment of their likely performance amongst other factors.

We process special category data, such as information about your ethnic origin or health, as part of our equal opportunities monitoring process and in order to meet legal obligations. This information is collected with the express consent of job applicants. Consent may be withdrawn by an applicant at any time.

We may offer to contact unsuccessful applicants within a period of six months following the application if another suitable vacancy arises. Information is only used in this way with the express
consent of applicants, which may be withdrawn at any time.

If we wish to process your personal data for a new purpose we will inform you of any additional processing.

Information from your application form and from the shortlisting and selection process will be stored in a paper-based file, in electronic records within our HR system and also in other IT systems, including email.

A copy of your application form and all other personal data collected during the recruitment and selection process will be held as follows:

For successful applicants this will be transferred to a personnel file where it will be held securely. You will be given a workforce privacy notice upon appointment which will explain how we will hold
and process your data as an employee.

For unsuccessful applicants, securely for a period of six months.

Your information will be shared with school staff with a recruitment responsibility. This will include members of our HR and administrative staff, those responsible for shortlisting and interviewing and managers within the relevant area of work or department. Equality monitoring information is separated from the application form upon receipt and is not shared with those responsible for shortlisting and interviewing.

We do not share information about job applicants with anyone without consent unless the law and our policies allow us to do so.

We will not share your data with third parties unless and until an offer of employment is made to you. At that stage, your data will be shared to fulfil legal requirements, obtain or provide necessary
information or because the third party processes data on our behalf. These third parties include:
• The Disclosure and Barring Service in order to undertake a criminal record check
• Suppliers and consultants that provide us with a service, such as occupational health, HR or legal services
• Relevant professional bodies in order to verify your qualifications (such as the Teaching Regulation Agency for teaching posts).

When we appoint third parties to process data on our behalf, the third party is also required to process the data lawfully and fairly and in a manner that ensures appropriate security of the data,
using appropriate technical or organisational measures to protect against unauthorised or unlawful processing and accidental loss.

We do not transfer your data to countries outside the European Economic Area.

Under data protection legislation, you have the right to request access to information about you that we hold. To make a request for your personal information, contact our data protection officer
(details at the beginning of this document).

You also have the right to:
• restrict processing of your data in certain circumstances;
• prevent processing for the purpose of direct marketing;
• object to decisions being taken by automated means;
• object to the processing of your data where we are relying on our legitimate interests as the lawful basis for processing;
• in certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed; and
• claim compensation for damages caused by a breach of data protection legislation.

If you have a concern about the way we are collecting or using your personal data, we ask that you raise your concern with us in the first instance. Alternatively, you can contact the Information
Commissioner’s Office at https://ico.org.uk/concerns/

If you would like to discuss anything above, please contact the School.

Privacy Notice for Parents & Students

How we use pupil and parent information

Under General Data Protection Regulations (GDPR) we are obliged to inform you of the information we hold on and your child(ren), what we use it for, who we share it with, and for how long we keep it. This privacy notice (also known as a fair processing notice) aims to provide you with this information. If it, or any information linked to is unclear, please contact the school office, or the school’s Data Protection Officer. Contact details for both are available at the end of this privacy notice.

We, Stepney All Saints School are the Data Controller for the purposes of data protection law.

As a public body as we have appointed a Data Protection Officer (DPO), John Perason-Hicks (john.pearson-hicks@london.anglican.org).

1. The categories of pupil & parent information that we collect, hold and share include but are not limited to:

  • Personal information (such as name, unique pupil number and address, parents national insurance number).
  • Contact details and preference (contact telephone numbers, email addresses, addresses)
  • Characteristics (such as ethnicity, religion, language, nationality, country of birth and free school meal eligibility)
  • Attendance information (such as sessions attended, number of absences and absence reasons)
  • Assessment information (such as data scores, tracking, and internal and external testing)
  • Relevant medical information (such as NHS information, health checks, physical and mental health care, immunisation program and allergies)
  • Special educational needs information (such as EHCP’s, statements, applications for support, care or support plans)
  • Safeguarding information
  • Exclusion information
  • Behavioural information
  • Photographs (for internal safeguarding & security purposes, school newsletters, media and promotional purposes).
  • CCTV images
  • Payment details
  • Biometric data

We may also hold data about pupils that we have received from other organisations, including other schools, local authorities and the Department for Education.

2. Why we collect and use this information
We use the pupil and parent data:

  • to support pupil learning
  • to monitor and report on pupil progress
  • to provide appropriate pastoral and medical care
  • for safeguarding and pupil welfare purposes
  • administer admissions waiting lists
  • for research purposes
  • to inform you about events and other things happening in the school
  • to assess the quality of our services
  • to comply with the law regarding data sharing

3. The lawful basis on which we use this information
Our lawful basis for collecting and processing pupil information information is defined under Article 6, and the following sub-paragraphs in the GDPR apply:

  • (a) Data subject gives consent for one or more specific purposes.
  • (c) Processing is necessary to comply with the legal obligations of the controller.
  • (d) Processing is necessary to protect the vital interests of the data subject.
  • (e) Processing is necessary for tasks in the public interest or exercise of authority vested
    in the controller(the provision of education).

Our lawful basis for collecting and processing pupil information information is also further defined under Article 9, in that some of the information we process is deemed to be sensitive, or special,
information and the following sub-paragraphs in the GDPR apply:

  • (a) The data subject has given explicit consent.
  • (b) It is necessary to fulfill the obligations of controller or of data subject.
  • (c) It is necessary to protect the vital interests of the data subject.
  • (d) Processing is carried out by a foundation or not-for-profit organisation (includes religious, political or philosophical organisations and trade unions)
  • (g) Reasons of public interest in the area of public health
  • (i) It is in the public interest

Where we have obtained consent to use pupils’ personal data, this consent can be withdrawn at any time.

Some of the reasons listed above for collecting and using pupils’ personal data overlap, and there may be several grounds which justify our use of this data.

An example of how we use the information you provide is:

The submission of the school census returns, including a set of named pupil records, is a statutory requirement on schools under Section 537A of the Education Act 1996.
Putting the school census on a statutory basis:
• means that schools do not need to obtain parental or pupil consent to the provision of information
• ensures schools are protected from any legal challenge that they are breaching a duty of confidence to pupils
• helps to ensure that returns are completed by schools

4. Collecting pupil information
Whilst the majority of pupil information you provide to us is mandatory, some of it is provided to us on a voluntary basis. In order to comply with the General Data Protection Regulation, we will inform you whether you are required to provide certain pupil information to us or if you have a choice in this. Where we have obtained consent to use pupils’ personal data, this consent can be withdrawn at any time. 

5. Storing pupil data
We hold pupil data whilst the child remains at CofE School. The file will follow the pupil when he /she leaves school/will be retained until [secondary schools add retention period here] However
where there is a legal obligation to retain the information beyond that period, it will be retained in line with our retention policy.

We have data protection policies and procedures in place, including strong organisational and technical meansures, which are regularly reviewed. 

6. Who we share pupil information with
We routinely share pupil information with appropriate third parties, including:

  • Our local authority – to meet our legal obligations to share certain information with it, such as safeguarding concerns and exclusions
  • The Department for Education
  • The pupil’s family and representatives
  • Educators and examining bodies
  • Ofsted
  • Suppliers and service providers – to enable them to provide the service we have contracted them for
  • Financial organisations
  • Central and local government
  • Our auditors
  • Survey and research organisations
  • Health authorities
  • Security organisations
  • Health and social welfare organisations
  • Professional advisers and consultants
  • Charities and voluntary organisations
  • Police forces, courts, tribunals
  • Professional bodies
  • Schools that the pupil’s attend after leaving us

Where we transfer personal data to a country or territory outside the European Economic Area, we will do so in accordance with data protection law.

7. Why we share pupil information
We do not share information about our pupils with anyone without consent unless the law and our policies allow us to do so.

We share pupils’ data with the Department for Education (DfE) on a statutory basis. This data sharing underpins school funding and educational attainment policy and monitoring.
We are required to share information about our pupils with our local authority (LA) and the Department for Education (DfE) under section 3 of The Education (Information About Individual
Pupils) (England) Regulations 2013.

8. Data collection requirements:
To find out more about the data collection requirements placed on us by the Department for Education (for example; via the school census) go to https://www.gov.uk/education/data-collectionand-censuses-for-schools.

9. [Secondary Schools / All Through Only] Youth support services
Pupils aged 13+:
Once our pupils reach the age of 13, we also pass pupil information to our local authority and / or provider of youth support services as they have responsibilities in relation to the education or training of 13-19 year olds under section 507B of the Education Act 1996.
This enables them to provide services as follows:

  • youth support services
  • careers advisers
    A parent or guardian can request that only their child’s name, address and date of birth is
    passed to their local authority or provider of youth support services by informing us. This
    right is transferred to the child / pupil once he/she reaches the age 16.

Pupils aged 16+:
We will also share certain information about pupils aged 16+ with our local authority and / or provider of youth support services as they have responsibilities in relation to the education or
training of 13-19 year olds under section 507B of the Education Act 1996.
This enables them to provide services as follows:

  • post-16 education and training providers
  • youth support services
  • careers advisers

For more information about services for young people, please visit our local authority website.

10. The National Pupil Database (NPD)
The NPD is owned and managed by the Department for Education and contains information about pupils in schools in England. It provides invaluable evidence on educational performance to inform independent research, as well as studies commissioned by the Department. It is held in electronic format for statistical purposes. This information is securely collected from a range of sources including schools, local authorities and awarding bodies.
We are required by law, to provide information about our pupils to the DfE as part of statutory data collections such as the school census and early years’ census. Some of this information is then stored in the NPD. The law that allows this is the Education (Information About Individual Pupils) (England)
Regulations 2013.

To find out more about the NPD, go to https://www.gov.uk/government/publications/national-pupildatabase-user-guide-and-supporting-information.

The department may share information about our pupils from the NPD with third parties who promote the education or well-being of children in England by:

  • conducting research or analysis
  • producing statistics
  • providing information, advice or guidance

The Department has robust processes in place to ensure the confidentiality of our data is maintained and there are stringent controls in place regarding access and use of the data.

Decisions on whether DfE releases data to third parties are subject to a strict approval process and based on a detailed assessment of:

  • who is requesting the data
  • the purpose for which it is required
  • the level and sensitivity of data requested: and
  • the arrangements in place to store and handle the data

To be granted access to pupil information, organisations must comply with strict terms and conditions covering the confidentiality and handling of the data, security arrangements and
retention and use of the data.
For more information about the department’s data sharing process, please visit:
https://www.gov.uk/data-protection-how-we-collect-and-share-research-data
For information about which organisations the department has provided pupil information, (and for
which project), please visit the following website:
https://www.gov.uk/government/publications/national-pupil-database-requests-received
To contact DfE: https://www.gov.uk/contact-dfe

11. Requesting access to your personal data and your Data Protection Rights
Under data protection legislation, parents and pupils have the right to request access to information about them that we hold, through a Subject Access Request.
Parents/carers can make a request with respect to their child’s data where the child is not considered mature enough to understand their rights over their own data (usually under the age of 12), or where the child has provided consent.
Parents also have the right to make a subject access request with respect to any personal data the school holds about them.
If you make a subject access request, and if we do hold information about you or your child, we will:

  • Give you a description of it
  • Tell you why we are holding and processing it, and how long we will keep it for
  • Explain where we got it from, if not from you or your child
  • Tell you who it has been, or will be, shared with
  • Let you know whether any automated decision-making is being applied to the data, and any consequences of this
  • Give you a copy of the information in an intelligible form

Individuals also have the right for their personal information to be transmitted electronically to another organisation in certain circumstances.

If you would like to make a request please contact our data protection officer.

Parents/carers also have a legal right to access to their child’s educational record. To request access, please contact your child’s Head of Year.
You also have the right to:

  • object to processing of personal data that is likely to cause, or is causing, damage or distress
  • prevent processing for the purpose of direct marketing
  • object to decisions being taken by automated means
  • in certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed; and
  • claim compensation for damages caused by a breach of the Data Protection regulations

12. Complaints
We take any complaints about our collection and use of personal information very seriously.
If you think that our collection or use of personal information is unfair, misleading or inappropriate, or have any other concern about our data processing, please raise this with us in the first instance.
To make a complaint, please contact our data protection officer. john.pearson-hicks@london.anglican.org
Alternatively, you can make a complaint to the Information Commissioner’s Office:

  • Report a concern online at https://ico.org.uk/concerns/
  • Call 0303 123 1113
  • Or write to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow,
    Cheshire, SK9 5AF

13. Contact us
If you have any questions, concerns or would like more information about anything mentioned in this privacy notice, please contact our data protection officer or the school directly.

Privacy Notice for Trainees

Stepney All Saints – Privacy Notice for trainees

Stepney All Saints School Privacy Notice
How we use Trainee Information Under General Data Protection Regulations (GDPR) we are obliged to inform you of the information we hold on you as a trainee in our school, including what we use it for, who we share it with, and for how long we keep it. This privacy notice (also known as a fair processing notice) aims to provide you with this information. It if, or any information linked to is unclear, please contact the school office, or the school’s Data Protection Officer. Contact details for both are available at the end of this privacy notice.

We, Stepney All Saints School are the Data Controller for the purposes of data protection law.

As a public body as we have appointed a Data Protection Officer (DPO), John Pearson-Hicks – email address john.pearson-hicks@london.anglican.org

1. The categories of information that we collect, hold and share include but are not limited to:
 Personal information (such as name, address, national insurance number).
 Contact details and preference (contact telephone numbers, email addresses, addresses)
 Characteristics (such as ethnicity, religion, language, nationality, country of birth)
 the terms and conditions of your employment if a paid trainee, including information
about your remuneration, including entitlement to benefits such as pensions or insurance cover;
 details of your qualifications, skills, experience and employment history, including start
and end dates, with previous employers and with the organisation;
 details of your bank account and national insurance number;
 information about your marital status, next of kin, dependants and emergency contacts;
 information about your entitlement to work in the UK (where applicable);
 information about your criminal record;
 details of your schedule (days of work and working hours) and attendance at school;
 details of periods of leave or absence taken by you
 assessments of your performance, including appraisals, performance reviews and ratings,
training you have participated in, performance improvement plans and related correspondence;
 information about medical or health conditions, including whether or not you have a disability for which the organisation needs to make reasonable adjustments and fulfil its
duty of care (including the use of Occupational Health Services);
 Photographs (for internal safeguarding & security purposes, school newsletters, media and promotional purposes).
 CCTV images
We may also hold personal data about you from third parties, such as references supplied by former employers, information provided during the completion of our pre-employment checks (where
applicable), your application to your training centre, and from the Discolure & Barring Service, in order to comply with our legal obligations and statutory guidance.

2. Why we collect and use this information: The purpose of collecting and processing this data is to help us recruit trainees and run the school effieciently, including to:
 Enable you to be paid and other benefits be provided (where applicable)
 Fulfil our legal obilgaitons towards safeguarding pupils
 Support effective performance management and appraisal and development of trainees
 Provide feedback to your training centre and awarding body
 Provide references where requested
 Equalities monitoring and reporting
 to assess the quality of our services
 to comply with the law regarding data sharing

3. The lawful basis on which we use this information
Our lawful basis for collecting and processing trainee information information is defined under
Article 6, and the following sub-paragraphs in the GDPR apply:
 (a) Data subject gives consent for one or more specific purposes.
 (c) Processing is necessary to comply with the legal obligations of the controller.
 (e) Processing is necessary for tasks in the public interest or exercise of authority vested in the controller (the provision of education). Our lawful basis for collecting and processing your information is also further defined under Article 9,
in that some of the information we process is deemed to be sensitive, or special, information and the following sub-paragraphs in the GDPR apply:
 (a) The data subject has given explicit consent.
 (b) It is necessary to fulfill the obligations of controller or of data subject.
 (c) It is necessary to protect the vital interests of the data subject.
 (d) Processing is carried out by a foundation or not-for-profit organisation (includes religious, political or philosophical organisations and trade unions) A full breakdown of the information we collect on trainees can be found here[link to record of processing]. Where we have obtained consent to use trainee members personal data, this consent can be
withdrawn at any time. We will make this clear when we ask for consent, and explain how consent
can be withdrawn. Some of the reasons listed above for collecting and using your personal data
overlap, and there may be several grounds which justify our use of this data.

4. Collecting trainee information
Whilst the majority of information you provide to us is mandatory, some of it is provided to us on a voluntary basis. In order to comply with the General Data Protection Regulation, we will inform you whether you are required to provide certain your information to us or if you have a choice in this. Where we have obtained consent to use your personal data, this consent can be withdrawn at any time. We will make this clear when we ask for consent, and explain how consent can be withdrawn.

5. Storing your data
We create and maintain a file for each trainee. The information contained in this file is kept secure and is only used for purposes directly relevant to your placement with us. Once your employment with us has ended, we will retain this file and delete the information in it in accordance with our retention policy.
Please refer to our Data Storage and Retention Policy for further information.
We have data protection policies and procedures in place, including strong organisational and technical measures, which are regularly reviewed. Further information can be found on our
website.

6. Who we share information with
We routinely share trainees information with appropriate third parties, including:
 Your training centre
 Your awarding body
 Our local authority – to meet our legal obligations to share certain information with it, such as safeguarding concerns and information relating to certain other matters
 The Department for Education
 Educators and examining bodies
 Ofsted
 Suppliers and service providers – to enable them to provide the service we have contracted them for
 Central and local government
 Professional advisers and consultants – for us to devlop our service to best provide our public service
 Police forces, courts, tribunals
 Employment and recruitment agencies
 Future employers
Where we transfer personal data to a country or territory outside the European Economic Area, we will do so in accordance with data protection law.

7. Why we share your information
We do not share information about you with anyone without consent unless the law and our policies allow us to do so.
We share information with your training provider in order to provide you with the best possible support.

8. Data collection requirements:
Our data collection requirements relate to our contractual obligations with the training centers with which we work. Further details are available on request.

9. Requesting access to your personal data and your Data Protection Rights Under data protection legislation, you have the right to request access to information about them that we hold, through a Subject Access Request. If you make a subject access request, and if we do hold information about you, we will:
 Give you a description of it
 Tell you why we are holding and processing it, and how long we will keep it for
 Explain where we got it from, if not from you or your child
 Tell you who it has been, or will be, shared with
 Let you know whether any automated decision-making is being applied to the data, and any consequences of this
 Give you a copy of the information in an intelligible form
Individuals also have the right for their personal information to be transmitted electronically to another organisation in certain circumstances.
If you would like to make a request please contact our data protection officer: 
John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org

You also have the right to:
 object to processing of personal data that is likely to cause, or is causing, damage or distress
 prevent processing for the purpose of direct marketing
 object to decisions being taken by automated means
 in certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed; and
 claim compensation for damages caused by a breach of the Data Protection regulations

10. Complaints
We take any complaints about our collection and use of personal information very seriously. If you think that our collection or use of personal information is unfair, misleading or inappropriate,
or have any other concern about our data processing, please raise this with us in the first instance. To make a complaint, please contact our data protection officer. [insert details here]
Alternatively, you can make a complaint to the Information Commissioner’s Office:
 Report a concern online at https://ico.org.uk/concerns/
 Call 0303 123 1113
 Or write to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow,
Cheshire, SK9 5AF

11. Contact us
If you have any questions, concerns or would like more information about anything mentioned in this privacy notice, please contact our data protection officer: John Pearson-Hicks – email address john.pearson-hicks@london.anglican.org

Privacy Notice for Governors

Stepney All Saints – Privacy Notice for Governors

Stepney All Saints School Privacy Notice
How we use Governor Information Under General Data Protection Regulations (GDPR) we are obliged to inform you of the information we hold on you as governors at our school, including what we use it for, who we share it with, and for how long we keep it. This privacy notice (also known as a fair processing notice) aims to provide you with this information. It if, or any information linked to is unclear, please contact the school office, or the school’s Data Protection Officer. Contact details for both are available at the end of this privacy notice.
We, Stepney All Saints School are the Data Controller for the purposes of data protection law. As a public body as we have appointed a Data Protection Officer (DPO), John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org

1. The categories of information that we collect, hold and share include but are not limited to:
 Personal information (such as name, address, national insurance number).
 Contact details and preference (contact telephone numbers, email addresses, addresses)
 details of your qualifications, skills, and experience for skills audit purposes;
 details of your bank account and national insurance number for reimbursement of
expenses
 information about your criminal record;
 details of your appointment, including the appointing body, the date of appointment, and term of office.
 Training you have attended in your role as a governor
 Your attendance and visits to the school in your role as a governor
 Any roles or leadership responsibilities you hold within the governing body
 Your business or other charitable interests
 equal opportunities monitoring information, including information about your ethnic origin, sexual orientation, health and religion or belief.where this has been provided.
 Photographs (for internal safeguarding & security purposes, school newsletters, media and promotional purposes).
 CCTV images
We may also hold personal data about you from third parties, such as information supplied by the appointing body and from the Discolure & Barring Service, in order to comply with our legal
obligations and statutory guidance.

2. Why we collect and use this information
The purpose of collecting and processing this data is to:
 Enable you to serve as a governor
 Comply with our statutory safeguarding obligations
 Ensure we complty with our instrument of governance / Articles of Association
 Support effective governor development
 Support effective management of the school
 Staturoty reporting the Department for Education
 Equalities monitoring and reporting
 Respond to any governance issues
 Improve the management of workforce data across the sector
 Support the work of the School Teachers’ Review Body
 to assess the quality of our services

 to comply with the law regarding data sharing

3. The lawful basis on which we use this information
Our lawful basis for collecting and processing your information information is defined under Article and the following sub-paragraphs in the GDPR apply:
 (c) Processing is necessary to comply with the legal obligations of the controller.
 (e) Processing is necessary for tasks in the public interest or exercise of authority vested in the controller (the provision of education). Our lawful basis for collecting and processing your information is also further defined under Article 9,
in that some of the information we process is deemed to be sensitive, or special, information and the following sub-paragraphs in the GDPR apply:
 (a) The data subject has given explicit consent.
 (b) It is necessary to fulfill the obligations of controller or of data subject.
 (d) Processing is carried out by a foundation or not-for-profit organisation (includes religious, political or philosophical organisations and trade unions)
 (i) It is in the public interest. A full breakdown of the information we collect on governors can be found here [link to record of
processing]. Where we have obtained consent to use governors members personal data, this consent can be
withdrawn at any time. We will make this clear when we ask for consent, and explain how consent can be withdrawn. Some of the reasons listed above for collecting and using your personal data
overlap, and there may be several grounds which justify our use of this data.

4. Collecting Governor information
Whilst the majority of information you provide to us is mandatory, some of it is provided to us on a voluntary basis. In order to comply with the General Data Protection Regulation, we will inform you whether you are required to provide certain your information to us or if you have a choice in this. Where we have obtained consent to use your personal data, this consent can be withdrawn at any time. We will make this clear when we ask for consent, and explain how consent can be withdrawn.

5. Storing your data
We create and maintain a file for each governing body member. The information contained in this file is kept secure and is only used for purposes directly relevant to your term as a governor at the school. Once your term(s) of office with us has ended, we will retain this file and delete the information in it in accordance with ourr retention policy. Please refer to our Data Storage and Retention Policy for further information. We have data protection policies and procedures in place, including strong organisational and technical meansures, which are regularly reviewed. Further information can be found on our website.

6. Who we share information with
We routinely share information with appropriate third parties, including:
 The Department for Education – to meet our legal obligations to share certain information with it
 Ofsted
 Our auditors, to ensure our compliance with our legal obligaitons
 Professional advisers and consultants – for us to devlop our service to best provide our public service
 Police forces, courts, tribunals where we transfer personal data to a country or territory outside the European Economic Area, we
will do so in accordance with data protection law.

7. Why we share your information we do not share information about you with anyone without consent unless the law and our policies allow us to do so.
Department for Education (DfE)
We share personal data with the Department for Education (DfE) on a statutory basis. Under s.538 of the Education Act 1996, and the Academies Financial Handbook, the Secretary of State requires boards to provide certain details they hold about people involved in governance, as volunteered by individuals, and the information kept up to date.

8. Data collection requirements:
The DfE collects and processes personal data relating to those governing schools (including Single and Multi Academy Trusts and all schools are required to ensure they keep their governors details up to date under s.538 of the Education Act 1996, and the Academies Financial Handbook to find out more about the data collection requirements placed on us by the Department for
Education including the data that we share with them, go to https://www.gov.uk/education/datacollection-and-censuses-for-schools.
For more information about the department’s data sharing process, please visit:
https://www.gov.uk/data-protection-how-we-collect-and-share-research-data
To contact the department: https://www.gov.uk/contact-dfe

9. Requesting access to your personal data and your Data Protection Rights under data protection legislation, governors have the right to request access to information about
them that we hold, through a Subject Access Request.
If you make a subject access request, and if we do hold information about you, we will:
 Give you a description of it
 Tell you why we are holding and processing it, and how long we will keep it for
 Explain where we got it from, if not from you or your child
 Tell you who it has been, or will be, shared with
 Let you know whether any automated decision-making is being applied to the data, and any consequences of this
 Give you a copy of the information in an intelligible form
Individuals also have the right for their personal information to be transmitted electronically to another organisation in certain circumstances. If you would like to make a request please contact our data protection officer : John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org
You also have the right to:
 object to processing of personal data that is likely to cause, or is causing, damage or distress
 prevent processing for the purpose of direct marketing
 object to decisions being taken by automated means
 in certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed; and
 claim compensation for damages caused by a breach of the Data Protection regulations

10. Complaints
We take any complaints about our collection and use of personal information very seriously. If you think that our collection or use of personal information is unfair, misleading or inappropriate,
or have any other concern about our data processing, please raise this with us in the first instance. To make a complaint, please contact our data protection officer: John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org
Alternatively, you can make a complaint to the Information Commissioner’s Office:
 Report a concern online at https://ico.org.uk/concerns/
 Call 0303 123 1113
 Or write to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow,
Cheshire, SK9 5AF

11. Contact us
If you have any questions, concerns or would like more information about anything mentioned in this privacy notice, please contact our data protection officer: John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org.

Stepney All Saints School Privacy Notice How we use Governor Information under General Data Protection Regulations (GDPR) we are obliged to inform you of the information we hold on you as governors at our school, including what we use it for, who we share it with, and for how long we keep it. This privacy notice (also known as a fair processing notice) aims to provide you with this
information. It if, or any information linked to is unclear, please contact the school office, or the school’s Data Protection Officer. Contact details for both are available at the end of this privacy notice. We, Stepney All Saints School are the Data Controller for the purposes of data protection law.
As a public body as we have appointed a Data Protection Officer (DPO), John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org

Privacy Notice for Staff

Stepney All Saints – Privacy Notice for Staff 

Stepney All Saints School Privacy Notice
How we use Staff Information
Under General Data Protection Regulations (GDPR) we are obliged to inform you of the information we hold on you as our employees, including what we use it for, who we share it with, and for how long we keep it. This privacy notice (also known as a fair processing notice) aims to provide you with this
information. It if, or any information linked to is unclear, please contact the school office, or the school’s Data Protection Officer. Contact details for both are available at the end of this privacy notice.
We, Stepney All Saints School are the Data Controller for the purposes of data protection law.
As a public body as we have appointed a Data Protection Officer (DPO), John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org

1. The categories of staff information that we collect, hold and share include but are not limited to:
 Personal information (such as name, address, national insurance number).
 Contact details and preference (contact telephone numbers, email addresses, addresses)
 Characteristics (such as ethnicity, religion, language, nationality, country of birth)
 the terms and conditions of your employment;
 details of your qualifications, skills, experience and employment history, including start and end dates, with previous employers and with the organisation;
 information about your remuneration, including entitlement to benefits such as pensions or insurance cover;
 details of your bank account and national insurance number;
 information about your marital status, next of kin, dependants and emergency contacts;
 information about your entitlement to work in the UK;
 information about your criminal record;
 details of your schedule (days of work and working hours) and attendance at work;
 details of periods of leave taken by you, including holiday, sickness absence, family leave and sabbaticals, and the reasons for the leave;
 details of any disciplinary or grievance procedures in which you have been involved, including any warnings issued to you and related correspondence;
 assessments of your performance, including appraisals, performance reviews and ratings, training you have participated in, performance improvement plans and related
correspondence;
 information about medical or health conditions, including whether or not you have a disability for which the organisation needs to make reasonable adjustments and fulfil its duty of care (including the use of Occupational Health Services);
 details of trade union membership where provided by yourself or your trade union;
 equal opportunities monitoring information, including information about your ethnic origin, sexual orientation, health and religion or belief.where this has been provided.
 Photographs (for internal safeguarding & security purposes, school newsletters, media and promotional purposes).
 CCTV images
We may also hold personal data about you from third parties, such as references supplied by former employers, information provided during the completion of our pre-employment checks, and from
the Discolure & Barring Service, in order to comply with our legal obligations and statutory guidance.

2. Why we collect and use this information
The purpose of collecting and processing this data is to help us recruit staff and run the school efficiently, including to:
 Enable you to be paid and other benefits be provided
 Facilitate our safer recruitment of staff, as part of our safeguarding obligations towards pupils
 Fulfil our legal obilgaitons in recruiting staff
 Support effective performance management and appraisal
 Support effective management of the school workforce, along with the implementation of its policies and procedures
 Inform our recruitment and retention policies
 Allow better financial modelling, administration and planning
 Provide references where requested
 Equalities monitoring and reporting
 Respond to any staffing issues
 Improve the management of workforce data across the sector
 Support the work of the School Teachers’ Review Body
 to assess the quality of our services
 to comply with the law regarding data sharing

3. The lawful basis on which we use this information
Our lawful basis for collecting and processing staff information information is defined under Article 6, and the following sub-paragraphs in the GDPR apply:
 (a) Data subject gives consent for one or more specific purposes.
 (c) Processing is necessary to comply with the legal obligations of the controller.
 (d) Processing is necessary to protect the vital interests of the data subject.
 (e) Processing is necessary for tasks in the public interest or exercise of authority vested in the controller (the provision of education). Our lawful basis for collecting and processing your information is also further defined under Article 9, in that some of the information we process is deemed to be sensitive, or special, information and the following sub-paragraphs in the GDPR apply:
 (a) The data subject has given explicit consent.
 (b) It is necessary to fulfill the obligations of controller or of data subject.
 (c) It is necessary to protect the vital interests of the data subject.
 (d) Processing is carried out by a foundation or not-for-profit organisation (includes religious, political or philosophical organisations and trade unions)
 (h) Processing is necessary for the purposes of preventive or occupational medicine, for the assessment of the working capacity of the employee, medical diagnosis, the provision of health or social care or treatment
 (i) It is in the public interest. A full breakdown of the information we collect on staff can be found here[link to record of
processing]. Where we have obtained consent to use staff members personal data, this consent can be
withdrawn at any time. We will make this clear when we ask for consent, and explain how consent can be withdrawn. Some of the reasons listed above for collecting and using your personal data
overlap, and there may be several grounds which justify our use of this data.

4. Collecting staff information
Whilst the majority of information you provide to us is mandatory, some of it is provided to us on a voluntary basis. In order to comply with the General Data Protection Regulation, we will inform you whether you are required to provide certain your information to us or if you have a choice in this. Where we have obtained consent to use your personal data, this consent can be withdrawn at any time. We will make this clear when we ask for consent, and explain how consent can be withdrawn.

5. Storing your data
We create and maintain an employment file for each staff member. The information contained in this file is kept secure and is only used for purposes directly relevant to your employment.
Once your employment with us has ended, we will retain this file and delete the information in it in accordance with our retention policy. Please refer to our Data Storage and Retention Policy for further information. We have data protection policies and procedures in place, including strong organisational and
technical meansures, which are regularly reviewed. Further information can be found on our
website.

6. Who we share information with
We routinely share staff information with appropriate third parties, including:
 Our local authority – to meet our legal obligations to share certain information with it, such as safeguarding concerns and information relating to certain staffing matters
 The Department for Education – to meet our legal obligations to share certain information with it,
 Your family and representatives – such as in the event of an emergency
 Educators and examining bodies – such as ensuring we adhere to examining regulations to guarantee the validity of examinations
 Ofsted – such as during the course of a school inspection
 Suppliers and service providers – to enable them to provide the service we have contracted them for eg, HR, payroll, employee benefit schemes
 Financial organisations eg Pension Scheme
 Central and local government – such as workforce analysis
 Our auditors, to ensure our compliance with our legal obligaitons
 Trade Unions and Professional Associations – to enable them to provide the service their members require
 Health authorities and Occupational Health and employee support schemes – to ensure the wellbeing of our staff body in accordance with our responsibilities as employer
 Security organisations – to create a secure workplace for staff
 Health and social welfare organisations – to ensure the wellbeing of our staff body in accordance with our responsibilities as employer
 Professional advisers and consultants – for us to devlop our service to best provide our public service
 Charities and voluntary organisations –
 Police forces, courts, tribunals
 Employment and recruitment agencies
 Future employers
Where we transfer personal data to a country or territory outside the European Economic Area, we will do so in accordance with data protection law.

7. Why we share your information
We do not share information about you with anyone without consent unless the law and our policies allow us to do so.
Local authority, We are required to share information about our workforce members with our local authority (LA)
under section 5 of the Education (Supply of Information about the School Workforce) (England) Regulations 2007 and amendments
Department for Education (DfE) We share personal data with the Department for Education (DfE) on a statutory basis. This data
sharing underpins workforce policy monitoring, evaluation, and links to school funding / expenditure and the assessment educational attainment. We are required to share information about our school employees with our local authority (LA) and the Department for Education (DfE) under section 5 of the Education (Supply of Information about the School Workforce) (England) Regulations 2007 and amendments.
[For use by academies and free schools only:]
We are required to share information about our staff with the (DfE) under section 5 of the Education (Supply of Information about the School Workforce) (England) Regulations 2007 and amendments.

8. Data collection requirements:
The DfE collects and processes personal data relating to those employed by schools (including Multi Academy Trusts) and local authorities that work in state funded schools (including all maintained schools, all academies and free schools and all special schools including Pupil Referral Units and Alternative Provision). All state funded schools are required to make a census submission because it is a statutory return under sections 113 and 114 of the Education Act 2005 to find out more about the data collection requirements placed on us by the Department for Education including the data that we share with them, go to https://www.gov.uk/education/datacollection-and-censuses-for-schools. The department may share information about school employees with third parties who promote the
education or well-being of children or the effective deployment of school staff in England by:
 conducting research or analysis
 producing statistics
 providing information, advice or guidance
The department has robust processes in place to ensure that the confidentiality of personal data is maintained and there are stringent controls in place regarding access to it and its use. Decisions on whether DfE releases personal data to third parties are subject to a strict approval process and based on a detailed assessment of:
 who is requesting the data
 the purpose for which it is required
 the level and sensitivity of data requested; and
 the arrangements in place to securely store and handle the data
To be granted access to school workforce information, organisations must comply with its strict terms and conditions covering the confidentiality and handling of the data, security arrangements and retention and use of the data.
For more information about the department’s data sharing process, please visit: https://www.gov.uk/data-protection-how-we-collect-and-share-research-data
To contact the department: https://www.gov.uk/contact-dfe

9. Requesting access to your personal data and your Data Protection Rights under data protection legislation, staff members have the right to request access to information
about them that we hold, through a Subject Access Request.
If you make a subject access request, and if we do hold information about you, we will:
 Give you a description of it
 Tell you why we are holding and processing it, and how long we will keep it for
 Explain where we got it from, if not from you or your child
 Tell you who it has been, or will be, shared with
 Let you know whether any automated decision-making is being applied to the data, and any consequences of this
 Give you a copy of the information in an intelligible form
Individuals also have the right for their personal information to be transmitted electronically to another organisation in certain circumstances. If you would like to make a request please contact our data protection officer: John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org
You also have the right to:
 object to processing of personal data that is likely to cause, or is causing, damage or distress
 prevent processing for the purpose of direct marketing
 object to decisions being taken by automated means
 in certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed; and
 claim compensation for damages caused by a breach of the Data Protection regulations

10. Complaints
We take any complaints about our collection and use of personal information very seriously. If you think that our collection or use of personal information is unfair, misleading or inappropriate,
or have any other concern about our data processing, please raise this with us in the first instance. To make a complaint, please contact our data protection officer: John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org
Alternatively, you can make a complaint to the Information Commissioner’s Office:
 Report a concern online at https://ico.org.uk/concerns/
 Call 0303 123 1113
 Or write to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

11. Contact us
If you have any questions, concerns or would like more information about anything mentioned in this privacy notice, please contact our data protection officer: John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org

Stepney All Saints School Privacy Notice
How we use Staff Information
Under General Data Protection Regulations (GDPR) we are obliged to inform you of the information we hold on you as our employees, including what we use it for, who we share it with, and for how long we keep it. This privacy notice (also known as a fair processing notice) aims to provide you with this information. It if, or any information linked to is unclear, please contact the school office, or the school’s Data Protection Officer. Contact details for both are available at the end of this privacy notice.
We, Stepney All Saints School are the Data Controller for the purposes of data protection law. As a public body as we have appointed a Data Protection Officer (DPO), John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org

Privacy Notice for Supply Contractors Consultants

Stepney All Saints – Privacy Notice for Supply Contractors Consultants

Stepney All Saints School Privacy Notice
How we use Supply, Consultant and Contractor Information
Under General Data Protection Regulations (GDPR) we are obliged to inform you of the information we hold on you, including what we use it for, who we share it with, and for how long we keep it. This privacy notice (also known as a fair processing notice) aims to provide you with this information. It if, or any information linked to is unclear, please contact the school office, or the school’s Data Protection Officer. Contact details for both are available at the end of this privacy notice.
We, Stepney All Saints School are the Data Controller for the purposes of data protection law. As a public body as we have appointed a Data Protection Officer (DPO), John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org

1. The categories of information that we collect, hold and share include but are not limited to:
 Personal information (such as name, address, national insurance number).
 Contact details and preference (contact telephone numbers, email addresses, addresses)
 Characteristics (such as ethnicity, religion, language, nationality, country of birth)
 the terms and conditions of your deployment with us including contractual terms;
 details of your qualifications, skills, experience and employment history where required;
 Payment details where applicable;
 information about your emergency contacts or associated procedure;
 information about your entitlement to work in the UK;
 information about your criminal record;
 details of your schedule (days of work and working hours) and attendance at work;
 information about medical or health conditions, including whether or not you have a disability for which the organisation needs to make reasonable adjustments and fulfil its duty of care (including the use of Occupational Health Services);
 Photographs (for internal safeguarding & security purposes, school newsletters, media and promotional purposes).
 CCTV images
We may also hold personal data about you from third parties, such as references supplied by former employers or service users, information provided during the completion of our pre-deployment checks, and from the Discolure & Barring Service, in order to comply with our legal obligations and statutory guidance.

2. Why we collect and use this information
The purpose of collecting and processing this data is to help us run the school effieciently, includingto:
 Fulfil our legal obilgaitons in relation to Keeping Children Safe in Education
 Develop all aspects of the school operationally
 Inform our operational procedures
 Allow better financial modelling, administration and planning
 Provide references where requested
 Allow us to fulfil or legal and contractual obligations
 to assess the quality of our services
 to comply with the law regarding data sharing

3. The lawful basis on which we use this information
Our lawful basis for collecting and processing your information information is defined under Article 6, and the following sub-paragraphs in the GDPR apply:
 (a) Data subject gives consent for one or more specific purposes.
 (c) Processing is necessary to comply with the legal obligations of the controller.
Our lawful basis for collecting and processing your information is also further defined under Article 9, in that some of the information we process is demed to be sensitive, or special, information and the following sub-paragraphs in the GDPR apply:
 (a) The data subject has given explicit consent.
 (b) It is necessary to fulfill the obligations of controller or of data subject.
 (d) Processing is carried out by a foundation or not-for-profit organisation (includes religious, political or philosophical organisations and trade unions) . A full breakdown of the information we collect on Supply Staff, Contractors and Consultants can be found here[link to record of processing].
Where we have obtained consent to use your personal data, this consent can be withdrawn at any time. We will make this clear when we ask for consent, and explain how consent can be withdrawn. Some of the reasons listed above for collecting and using your personal data overlap, and there may be several grounds which justify our use of this data.

4. Collecting Your Information
Whilst the majority of information you provide to us is mandatory our related to our mutual contractual obligation, some of it is provided to us on a voluntary basis. In order to comply with the
General Data Protection Regulation, we will inform you whether you are required to provide certain your information to us or if you have a choice in this. Where we have obtained consent to use your
personal data, this consent can be withdrawn at any time. We will make this clear when we ask for consent, and explain how consent can be withdrawn.

5. Storing your data
We create and maintain filing system related tot these individuals. The information contained in these files is kept secure and is only used for purposes directly relevant to your deployment with us.
Once your deployment with us has ended, we will retain this file and delete the information in it in accordance with our retention policy.
Please refer to our Data Storage and Retention Policy for further information.
We have data protection policies and procedures in place, including strong organisational and technical measures, which are regularly reviewed. Further information can be found on our
website.

6. Who we share information with
We routinely share supply, contractor and consultant information with appropriate third parties, including:
 Our local authority – to meet our legal obligations to share certain information with it, such as safeguarding concerns
 Your agency or employer regading the service provided
 Suppliers and service providers – to enable them to provide the service we have contracted them
 Our auditors, to ensure our compliance with our legal obligaitons
 Security organisations – to create a secure school environment
 Professional advisers and consultants – for us to develop our service to best provide our public service
 Police forces, courts, tribunals
 Future employers – references
Where we transfer personal data to a country or territory outside the European Economic Area, we will do so in accordance with data protection law.

7. Why we share your information
We do not share information about you with anyone without consent unless the law and our policies allow us to do so.
We only share your information with our Local Authority if we there is a genuine safeguarding concern. The majority of the information shared will be to manage the mutual contractual
obligations in place around the services provided.

8. Data collection requirements:
Our data collection requirements all relate to the our legal and contractual obligaitons, for example contract clauses or the statutory ‘Keeping Children Safe in Education Guidance’
9. Requesting access to your personal data and your Data Protection Rights Under data protection legislation, you have the right to request access to information about you that we hold, through a Subject Access Request. If you make a subject access request, and if we do hold information about you, we will:
 Give you a description of it
 Tell you why we are holding and processing it, and how long we will keep it for
 Explain where we got it from, if not from you or your child
 Tell you who it has been, or will be, shared with
 Let you know whether any automated decision-making is being applied to the data, and any consequences of this
 Give you a copy of the information in an intelligible form
Individuals also have the right for their personal information to be transmitted electronically to another organisation in certain circumstances. If you would like to make a request please contact our data protection officer: John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org
You also have the right to:
 object to processing of personal data that is likely to cause, or is causing, damage or distress
 prevent processing for the purpose of direct marketing
 object to decisions being taken by automated means
 in certain circumstances, have inaccurate personal data rectified, blocked, erased or destroyed; and
 claim compensation for damages caused by a breach of the Data Protection regulations

10. Complaints
We take any complaints about our collection and use of personal information very seriously. If you think that our collection or use of personal information is unfair, misleading or inappropriate,
or have any other concern about our data processing, please raise this with us in the first instance. To make a complaint, please contact our data protection officer: John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org
Alternatively, you can make a complaint to the Information Commissioner’s Office:
 Report a concern online at https://ico.org.uk/concerns/
 Call 0303 123 1113
 Or write to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow,
Cheshire, SK9 5AF

11. Contact us
If you have any questions, concerns or would like more information about anything mentioned in
this privacy notice, please contact our data protection officer: John Pearson-Hicks and email address john.pearson-hicks@london.anglican.org