You'll find the privacy notices for the services provided by our children's services department attached to this page.
Organisations that our children's services department may share your personal data with
Department for Education (DfE)
We share children and young person's data with the Department for Education (DfE) on a statutory basis under section 3 of The Education (Information About Individual Pupils) (England) Regulations 2013. This data sharing underpins school funding, educational attainment policy and monitoring and enables them to produce statistics, assess our performance, determine the destinations of young people after they have left school or college and to evaluate government funded programmes. We do not share information about children and young people without consent unless the law and our policies allow us to do so.
You can find out more about the data collection requirements placed on us by the Department for Education, for example via the school census.
The National Pupil Database (NPD)
The NPD is owned and managed by the Department for Education and contains information about pupils in schools in England. It provides invaluable evidence on educational performance to inform independent research, as well as studies commissioned by the department. It's held in electronic format for statistical purposes. This information is securely collected from a range of sources including schools, local authorities and awarding bodies.
The law requires us to provide information about our pupils to the DfE as part of statutory data collections. Some of this information is then stored in the national pupil database (NPD). The legislation that requires this is the Education (Information About Individual Pupils) (England) Regulations 2013.
Find out more about the NPD.
The department may share information about our pupils from the NPD with third parties who promote the education or well-being of children in England by:
- conducting research or analysis
- producing statistics
- providing information, advice or guidance
The department has robust processes in place to ensure the confidentiality of our data is maintained and there are stringent controls in place regarding access and use of the data. Decisions on whether DfE releases data to third parties are subject to a strict approval process and based on a detailed assessment of:
- who is requesting the data
- the purpose for which it is required
- the level and sensitivity of data requested
- the arrangements in place to store and handle the data
To be granted access to pupil information, organisations must comply with strict terms and conditions covering the confidentiality and handling of the data, security arrangements and retention and use of the data.
You can find more information about the department's data sharing process.
You can also find information about which organisations the department has provided pupil information and for which project.
Contact the DfE.
NHS Digital operates an IT system known as the Child Protection Information Sharing system (CP-IS). This system helps health and social care staff in England to share information about child protection plans securely, to better protect society's most vulnerable children. When a child is known to social services and is a looked after child, on a child protection plan or unborn child protection plan, basic information about that plan (referred to in this notice as CP Information) is shared securely with the NHS through CP-IS.
During the coronavirus pandemic, CP information will be extracted from CP-IS and shared with school nurses and health visitors, who work for local 0 to 19 public health service providers. This is because school nurses and health visitors cannot currently access CP-IS.
This information is being shared for child protection and health safeguarding purposes and will provide school nurses and health visitors across England with an additional reliable source of information about children on a protection plan and children with a looked after status. This will support them to provide healthcare services to those children at a time when local arrangements for data-sharing may be more difficult to administer due to the impact of coronavirus.
NHS Digital is the controller of the CP information extracted from CP-IS under the General Data Protection Regulation 2016 (GDPR) jointly with NHS England. This is because NHS England has directed NHS Digital to collect this information under the COVID-19 NHS England Public Health Directions 2020 (COVID-19 Directions).
For further information please visit the following NHS Digital pages: