GDPR Compliance Information
Please refer to this article in the first instance: http://www.4matrix.com/node/5167
We are registered with ICO and we believe that our procedures are generally compliant with Data Protection requirements. We will continue to update our policy and processes as we seek to implement the full requirements of the GDPR as they develop.
Our current Data Protection policy and procedures are described in our Terms and Conditions at www.4matrix.com/terms. In particular, Section 9 refers to privacy and data protection.
Our position is simplified by virtue of the fact that as a company we sell schools the data system called 4Matrix, but, under normal circumstances we do not see a school’s data. Hence the policies and practice regarding data protection as it applies to the data entered into 4Matrix by a school, is mostly an issue for the school. This is an equivalent position to Microsoft selling a Word Processor or Spreadsheet application to a user, but having no control, or sight of, the data which users might enter into these software products.
The information which we hold is limited to the information which is provided by a school in placing an order for 4Matrix. The main information that we hold on file is effectively a mailing list of contact persons for each school which has placed an order for 4Matrix.
The information on this list is stored by us during the licence period and for a period of three years after the end of this period for accounting purposes and then deleted.
Our position is made simple by virtue of the fact that as a company we sell schools the data system but, under normal circumstances, we do not see a school’s data. GDPR is therefore mostly an issue for the school.