(GDPR) General Data Protection Regulations

You may have heard that the law which manages how we use your information has changed.

In January 2021, the EU GDPR was incorporated into UK legislation as the ‘UK GDPR’. The key principles, rights and obligations remain the same as before, but there are some amendments, predominantly around international transfers of data.

The aim of this law is to ensure all personal data is protected and organisations who work with such data are held accountable for its protection.

How we use your information

The General Data Protection Regulation (GDPR) encourages organisations that are responsible for using people’s information to make sure it is clear why we need your information and how it is used.

To help explain how your information is used we have published a Privacy Notice, which you can read below.

Mill House School is committed to the highest standards of information security, privacy and transparency.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for providing advice and guidance to the Mill House School in order to assist with matters relating to data protection and the use of your personal information. Our DPO is the School DPO Service and is contactable via email at

The Data Protection Lead

The School has nominated Mark Wright as the designated person to be contacted internally in relation to all matters relating to data protection issues, and to make referrals, where necessary. If you have a question about how your personal data is used in school, or would like to make a formal request, you can contact our Data Protection Lead by emailing Mark Wright at