Since returning to the Central & Eastern European Schools Association (CEESA) region, the concept of GDPR (General Data Protection Regulation) has been on my radar. This idea comes out of the European Union and it focuses on protecting personal data. Schools handle much information about students, parents and employees. This includes school reports, photographs, videos, health records, etc. GDPR asks us to think critically about what information we collect, why we collect and how we store and use data.
The TIS Technology Director and TIS technology integration specialist led the administrative staff (business office, secretaries, etc) in raising awareness about the data we have. I realized that as the director, I have a huge amount of information, some of it sensitive. The workshop got me thinking about how I protect school data and data that I might not think as sensitive or confidential, actually is to someone.
I will do the following:
- set my sleep password on my computer to 1 minute from 5 minutes
- reconsider what we collect in teachers’ personnel files and where that information is kept
- I will go back to my iPad instead of a regular notebook. I take a lot of notes during my meetings, conversations, work and if I ever lost this notebook, it might be harmful.
My question I am still struggling with is the handling of videos and photos of students and parents.