- About us
- About colleges
-
Corporate services
- Corporate services
- Mental health and wellbeing
- AoC Student Engagement Charter
- Data Protection/GDPR
-
Employment Services - college workforce
- Employment Services - college workforce
- Employment: How we support members
- Introduction & Employment Helpline
- Absence & Sickness Management
- Contracts and T&Cs
- Disciplinary, Capability, Grievance & Harassment
- Equality, Diversity & Inclusion
- General Employee Relations & HR Issues
- Holiday/annual leave related
- Industrial Relations
- ONS reclassification related guidance
- Pay & Pensions
- Recruitment
- Redundancy, Restructuring & TUPE
- Safeguarding/Prevent
- Workforce Benchmarking, Surveys & Research
- Governance
-
Projects
- Projects
- Get Involved!
- Resources
- Contact the projects team
- Apprenticeship Workforce Development (AWD) Programme
- Creating a Greener London – Sustainable Construction Skills
- The 5Rs Approach to GCSE Maths Resits
- Creative Arts in FE 2025 – developing student voice through creativity
- Digital Roles Across Non-digital Industries
- GCSE Resits Hub Project
- Pears Foundation Youth Social Action Programme: Phase Two
- Pears Youth Social Action Programme - phase three
- T Level and T Level Foundation Year Provider Support Programme
- T Level Professional Development (TLPD) Offer
- The Valuing Enrichment Project
- Film London - Metro London Skills Cluster
- Empowering FE: enhancing skills with technology
- Empowering FE: enhancing skills with technology project - data protection privacy notice
- Resources/Guidance
- Sustainability & Climate Action Hub
- Partnerships
- Honours Nomination
- Brexit
- Ofsted Inspection Support
- AoC charters
-
Recruitment and consultancy
- Recruitment and consultancy
- Meet The Team
- Recruitment and consultancy: How we support members
- Executive Recruitment
- Interim Recruitment
- Governance Recruitment
- College Vacancies
- Consultancy
- The College Collective
- External Board Reviews
- AoC Jobs
- Recruitment and consultancy case studies
- Senior Post Holder Appraisal and Chair Review
- Chair Review
-
Events and training
- Events and training
- Events
- T Level and T Level Foundation Year Events
- Events and training: How we support members
- Network Meetings
- Previous Events and Webinars
- In-House Training
- Senior Leadership Development Programme
- Early Career and Experienced Managers' Programme
- Sponsorship and Exhibition Opportunities
- Funding and finance
-
Policy
- Policy
- Meet the Policy Team
- Policy: How we support members
- Policy Areas
- Policy Briefings
- Submissions
- Policy Papers & Reports
- AoC 2030 Group
- AoC Strategy Groups
-
AoC Reference Groups
- AoC Reference Groups
- 14-16 Reference Group
- 16-18 Reference Group
- Adults (inc. ESOL) Reference Group
- Apprenticeship Reference Group
- EDI Reference Group
- HE Reference Group
- HR Reference Group
- International Reference Group
- Mental Health Reference Group
- SEND Reference Group
- Sustainability & Climate Change Reference Group
- Technology Reference Group
- WorldSkills Reference Group
- Opportunity England
- Research unit
-
News, campaigns and parliament
- News, campaigns and parliament
- AoC Newsroom
- AoC Blogs
- Briefings
- AoC Campaigns
- College case studies
-
Comms advice and resources for colleges
- Comms advice and resources for colleges
- Media relations: 10 ways to build effective relationships with the media
- How to choose a PR agency
- Legal considerations for communications and media work
- How to plan for a new build
- Crisis communications: your go-to guide
- How to handle photo consent for media and marketing
- How to evaluate a PR and media campaign
- How to react to regulation, funding and restructuring issues
- How to react quickly and effectively to the media
- Working with the media: a complete guide
- How to write a compelling case study
- How to write for the web
- Communications, marketing and campaigns community
- Communications, media, marketing and research: how we support members
- Work in Parliament
- Election resources
-
Equality, diversity and inclusion
- Equality, diversity and inclusion
- Equality, diversity and inclusion blogs
- AoC’s Equity, Diversity and Inclusion Charter
- AoC’s Equity, Diversity and Inclusion Charter for further education sector organisations
- AoC’s Equity, Diversity and Inclusion Charter signatories
- Diversity in Leadership
- Black FE Leadership Group and AoC partnership agreement
- AoC's Equity Exchange
- Equality, diversity and inclusion: how we support members
- Equality, diversity and inclusion case studies
- ETF Inclusive Leadership Coaching Programme
- Equality, diversity and inclusion briefings
- AoC Sport Diversity and Inclusion Action Plan
- Home
- Corporate services
- Data Protection/GDPR
Data Protection/GDPR
The General Data Protection Regulation (GDPR)
How we’re supporting you
This part of AoC's website explains the main GDPR issues for colleges. We will continually update this information with key updates from the Information Commissioners Office (ICO), important dates for your calendar, useful resources, blog posts and FAQs.
Model documents have been designed alongside college's needs and are available for members here. These documents are template data protection policies that have been developed by Irwin Mitchell LLP for the Association of Colleges to assist members in relation to their obligations under the GDPR and the Data Protection Act 2018. They have been prepared on the basis of what is required by law at the date they were prepared (clearly set out on the front cover of the documents), what is good practice, and our understanding of issues common to further education colleges. These template documents are for example purposes only, may not be suitable for your circumstances and should not be considered a substitute for the advice of a lawyer. You are advised to redraft these documents as needed to meet your requirements and to take legal advice on your policy documents. You agree you use these documents at your own risk in these respects.
Learn more about our consultancy services now.
GDPR Bespoke Support for Members & FE Colleges
AoC Services are now providing tailored GDPR support. This support will can provided in your college for Data Protection Officers, implementation teams and relevant staff teams. Our specialists are now working with individual colleges to ensure that they have successfully completed their data audits, are prepared for and implementing the enforced regulations and that they fully understand the impact of the rules on staff and learners.
GDPR is now here and here to stay. Whilst we may start to hear less about “GDPR”, it will very much exist through its absorption into the Data Protection Act.
So, what now?
- What do colleges do once they’ve put their governance in place?
- What about those who are still struggling?
In order to ensure ongoing GDPR support and guidance, AoC has a consultative service for our member colleges, with regards to their data protection compliance. We hope that this will allow all of our members to springboard into compliance. We can provide you with tailored in-house training, workshops and ongoing cyber security support. The focus of our support will be about helping you to achieving effective data protection compliance and will also include the constant monitoring and reviewing of that compliance – Our members will be able to strategically maintain their compliance.
Are you GDPR ready?
Top questions to ask yourself:
- Have all your contacts opted-in to receive your communications?
- Can they update their preferences easily?
- Is your website privacy statement up to date and visible?
- However your data is stored, is it backed-up?
- Who in your organisation can access this data?
- If it’s not critical to their job can you restrict data access permissions?
- What are your procedures for security or data breaches?
- Have you appointed a Data Protection Officer (DPO)?
Key issues for discussion
- Consent – understand how new standards will affect the collection and processing of personal data
- Privacy impact assessments – understand the purpose, practical application and how to conduct a privacy impact assessment in your organisation
- Data subjects rights – assess how new rights to portability and the right to be forgotten affect operations within your business
- Data Protection Officer – examine the remit, purpose and how to avoid conflicts of interest of the role
- Scope of GDPR – understand how the increased territorial scope of the GDPR impacts on your operations