Any organisation dealing with personal data will have additional responsibilities and liabilities from May 2018. This even applies if you simply circulate a spreadsheet of names.
Working with Classlist means you have taken a big step to manage and reduce any potential liabilities, because our processes have gone through a legal audit and have a lot of data protection safeguards built in.
- Through establishing a relationship with Classlist as your Data Processor you immediately become compliant in terms of using a legally validated, properly structured approach to data management. Classlist also becomes responsible for the technical and cybersecurity aspects of where personal data goes; who is authorised to access to it, and how it is protected from attack.
- Regarding insurance, should there be a data breach where Classlist's systems are at fault, we are fully insured for public liability, professional indemnity and also have specific cover for cyber insurance. PTAs generally hold insurance policies designed to cover public and personal liability for the Association and its officers. You are advised to check your coverage to ensure all relevant contingencies are covered.
- In choosing to work with Classlist, you have selected the market leader in this area. Classlist brings experience from working with over 1,800 schools across the UK. We have also invested heavily to obtain the best possible legal advice to ensure our procedures comply with current and anticipated legal requirements. You will therefore be seen to have acted in a prudent and conservative manner in selecting your supplier.
Naturally Classlist cannot be held responsible for data breaches where the PTA is at fault. However through using Classlist's purpose-built system, which is designed entirely around security, privacy and meeting PTA requirements, we believe that the likelihood of personal data going astray is significantly reduced.