In this section


The General Data Protection Regulation (GDPR) is European legislation that's replacing the Data Protection Act in May 2018. The core rules for looking after personal data remain in line with existing principles, but there are stricter standards to adhere to, and increased penalties for non-compliance.

All staff and students must comply with to the College’s Data Protection Policy and Acceptable Use Policy. These policies will be published here in the near future:

Privacy Notice - GDPR

Retention and Disposal Schedule

Data Protection Policy

IT and Security Acceptable Use Policy for Staff and Students

Staff and students are asked to be mindful of potential data breaches at all times. A personal data security breach may come from:

Should you have any queries relating to GDPR at West Herts College or wish to report a data breach or potential data breach please contact the College’s Data Protection Officer:

Data Protection Officer (DPO)
Sarah Knowles, Deputy Principal
West Herts College, Hempstead Rd, Watford, WD17 3EZ

Note to staff: Breaches can occur at any time and it may not always be possible to reach the DPO so any opportunity to contain the breach should be taken immediately. Examples of this include:

Supporting You

Find out more

Got a Question?

Find out more


Find out more