Titirangi Primary School complies with the requirements of the Privacy Act 2020. We look after the privacy of everyone associated with our school. In particular, we acknowledge that children and young people are vulnerable and are given particular emphasis in the Act (Principle 4).
We ensure that staff understand our school privacy processes, especially in relation to how we manage personal information, and our process for reporting breaches. Staff are made aware of these processes as needed (e.g. through staff induction and professional development, during staff meetings, and after incidents).
Titirangi Primary School follows the information privacy principles of the Privacy Act 2020. See Privacy Act 2020 and the Privacy Principles Website (Privacy Commissioner).
We collect, protect, access, and correct personal information according to the information privacy principles of the Privacy Act. Refer Personal Information for Titirangi Primary School. We only use information for the purposes it was collected, except in certain circumstances (e.g. for statistical purposes where the person's identity is not disclosed). We are guided by the following policies when we share information:
Under the Privacy Act, we are required to have a privacy officer. Our privacy officer is the principal. Their responsibilities include:
We follow the Privacy Commissioner's steps for responding to privacy breaches:
The school acts to contain the breach. We inform our privacy officer as soon as possible if our school (or an individual at our school) intentionally or accidentally provides unauthorised access to personal information, or discloses, alters, loses, or destroys someone's personal information.
We consider each incident on a case-by-case basis to assess the impact and seriousness of the breach.
We investigate the incident and take steps to prevent it from happening again.