General Data Protection Regulation

The GDPR ‘General Data Protection Regulation’ forms part of the data protection regime in the UK, together with the new Data Protection Act 2018 (DPA 2018). The main provisions of this apply, like the GDPR, from 25 May 2018.


Parents do not need to worry about GDPR.  The reason being that all Schools and Nurseries should by now be adhering to the new regulations set out in the main provisions.  It is their responsibility and not yours.

What does this mean?

It means that any personal data held by an organisation needs explicit consent for it, and  an explanation to how that data is to be used.

Schools and Nurseries using Report Writer

As Report Writer is a data processor and not a data controller, we do not need to collect consent.  It is the Schools and Nurseries responsibility to gather the consent of any data you pass to us for processing.  All parents have the right to opt out of this and should speak with the data controller should they wish to do so.

Data safety

All data processed by Report Writer is stored with UKFast, one of the UK’s leading data storage and hosting providers. Whether using the web app or pulling information via the device app, this is all stored on our dedicated hosting solution and encrypted for maximum data protection.  Database access is restricted to internal servers only with a proxy for remote management.  Web traffic is transferred over HTTPS, SSL protected and provided by COMODO CA Limited. Our application is also protected by a dedicated Cisco firewall.

Data deletion

Data can be deleted but must be submitted by the data controller, who will in turn seek the assistance of us the data processor in complying with that request.