We collect information on the children attending Buttercups Childcare, this helps us to provide a caring and safe environment.
The information that we collect includes:
· Personal information (name, address, date of birth etc.)
· Characteristics (such as ethnicity, language, nationality, country of birth).
· Attendance (sessions attended, number of absences and reasons for absence).
· Medical and allergy information.
· Personal details for children’s parents/carers.
· Any Special Education Needs information.
We use this data:
· To support children’s learning and development.
· To provide appropriate care to each individual child.
· To assess the quality of the care we are giving.
· To comply with our GDPR policy.
· To share, where required, during inspections.
We must have a lawful basis for processing all personal data.
Most of the information you are asked to provide is mandatory to register your child at the setting. However, some is provided on a voluntary basis. In line with our GDRP policy we will inform you whether or not you are required to provide certain information.
The lawful basis on which we process this information:
· To monitor Children’s progress across the Nursery.
· The School Standards and Framework Act- 1998
· Children and Families Act- 2014.
· The Special Educational Needs and Disability Regulations- 2014.
· General Data Protection Regulation- 2018.
· The School Admissions Regulations- 2012.
· The Education Act- 2011.
We keep all data about Children/families secure. Access to any personal information is limited. We will hold information about individuals only for as long as the law says and no longer than necessary. After this, we will dispose of it securely. (Please see a copy of the Retention periods for records, this is available on the GDPR Policy.)
Where possible your permission will be sought to share information. In some instances, this may not be feasible. We may share Children’s information with:
· The school which the child attends for Reception.
· The Local Authority.
· The Department for Education (DfE).
We may occasionally share information with outside agencies such as class photographers or organisations attending the Nursery/OOSC to deliver educational experiences. This will be done with your prior consent.
We do not share information about any children with anyone without consent unless the law and our policies allow us to do so.
We share children’s information with the Department for Education (DfE) on a statutory basis.
We are required to share information about our pupils with our local authority (LA) and the Department for Education (DfE) under section 3 of The Education Regulations 2013.
Data collection requirements:
To find out more about our data collection requirements please visit:
We are required by law to provide information about the children in our care to the DfE.
The DfE may share data about the children with third parties who promote the education or well-being of children in England by:
· Conducting research or analysis.
· Producing statistical information.
· Supplying further information, advice or guidance.
DfE will only release data to third parties after an assessment of:
· Who is requesting the data.
· For what purpose the data has been requested.
· The nature and sensitivity of the data requested.
· The privacy arrangements to protect the data.
All organisations handling Child data must comply with strict terms and conditions in regard to keeping all data private and secure and must also only retain data for the specified time period.
Requesting access to your personal data:
Under data protection legislation, parents and named carers have the right to request access to information about them that is held by Buttercups Childcare.
Should you wish to review your personal data, please speak directly to Sally Gedny who will do her best to accommodate your request.
You have a right to:
· Prevent processing for the purpose of advertising or marketing.
· Have inaccurate or incorrect personal data rectified or destroyed.
· Object to processing of personal data that is likely to cause damage or distress.
· Claim compensation for damages caused by a breach of the Data Protection Regulations (as set out in the GDPR policy.)
Should you have any concerns regarding the way we collect, use or store personal data, you should contact the Managing Director to address the issue.
Alternatively, you can contact the Information Commissioner’s Office. https://ico.org.uk/concerns/