All of our GDPR Policies and information are posted below:-

Privacy Notice – GJPA 2021

GJP- Privacy notice for staff 2021

Subject Access Request Procedures – GJPA

Subject Access Request Form – Graham James

Protection of biometric data policy


In May 2018, to better protect personal data and reduce the number of cyber-related crimes, the new General Data Protection Regulations (GDPR) were brought into force by the European Commission.

We are proud and pleased to announce that we have been awarded the Cyber Essentials Accreditation, thereby demonstrating that we take security and the protection of data seriously and more importantly – we are good at it!

At Graham James Primary Academy, we have always taken data security very seriously as we appreciate the consequences of data being shared inappropriately or incorrectly and the implications this can have on everybody involved. To date we can assure you that good practice is demonstrated in all of our processes and procedures around data protection; however, the more stringent GDPR means that we have to put into place additional measures and carry out further checks to make sure your data is even more secure. All relevant staff have undergone training and we have contacted companies we supply data to for confirmation of how they use the data and to ensure they keep the data safe at all times. We are satisfied that this is the case and data is never shared by any of the companies we use.

 Our data Protection officer is Andy Crow he can be contacted on

[email protected]


Alternatively contact the school re: data protection on:-

[email protected]