Services

Our Services

Data protection compliance should be considered internally with the same importance as Safeguarding and as such all members of staff must handle data securely and confidentially. Your school, college or university must, by law, be able to prove that they have the appropriate technical and organisational process in place for this to happen.

Discover more about our range of professional services that can ensure you meet and exceed your requirements.

OUTSOURCED DATA PROTECTION OFFICER

You have a legal obligation to appoint a Data Protection Officer (DPO) to assist you to monitor compliance, inform and advise on all your data protection issues, provide regular advice regarding Data Protection Impact Assessments (DPIA) and acting as a Single Point of Contact for your staff, your Senior Leadership Team and Board of Governors .


What we do: 

  • Provide oversight and guidance on data breaches
  • Assist with responses to Subject Access Requests (SAR)
  • Provide and update policies and procedures 
  • Review your technology and data security, make recommendations if required
  • Train Staff, Senior Leadership Team and Governors
  • Assist with Data Protection Impact Assessments (DPIA)
  • Review your supplier contracts for compliance
  • Assist you in tracking your data, data flows and transfers outside the UK

 

TERMLY AUDITING & REPORTING

Keeping you, your school, college, university and your Board of Governors fully updated with the latest information is paramount. We want to provide you, your employers, pupils and parents a level of service that will ensure your organisation is protecting data in a compliant manner.


We do this by:

  • Perform a site visit each term to meet with your Data Protection Lead
  • Carry out termly Audits to ensure correct procedures are being followed.  Provide Corrective Actions Plans (CAPs) if  required
  • Provide the latest information, changes in the law and developments within your sector to ensure you and your  organisation are compliant and up to date
  • Provide reports to the SLT and Board of Governors in a clear and concise manner on a termly basis, we will also arrange either online meetings or face to face to walk through the report, discuss any issues, concerns you or the report shows
  • In the event that a data breach occurs or there are issues and concerns raised we will work with you to review, raise and implement CAPs and ensure lesson's have been learnt.

ONLINE PORTAL

We can provide an online management portal so you can manage and evident your school, college or universities journey to compliance.


A secure, password protected site that enables you to:

 

  • Record Subject Access Requests (SARs)
  • Store supplier contracts
  • Input and provide evidence on data breaches
  • Automatic reporting to the ICO when required
  • Online training for staff
  • Record staff training
  • Store policies and procedures.

 

Having all of your records in one place allows you to provide controlled access to the SLT and designated staff.


TRAINING

Most data breaches occur due to human error, whilst this element of risk will never be completely removed if you can provide proof that you have taken all the correct steps that will help to indemnify you and your organisations reputation.


Regular training of your staff is imperative, we provide both online training through our online portal or when safe to do so provide classroom training to your staff.


We can on request provide and lead a presentation that  highlights the importance of the law and awareness training around cyber security.  We have found these useful on inset days.


On request we can provide materials or present to your parents the importance of Data Privacy and Data Security, these sessions can be recorded.

24/7 DPO ACCESS

We fully understand that if a serious data protection issue arises that time is of the essence.  Whether it is how to respond to a Subject Access Request (SAR) or to determine the severity of a data breach, your Data Protection Officer is available on a direct line to help and assist  you 24/7.


No call centre or automated help lines but a trusted voice on the end of the phone.  With you at every step!

SINGLE POINT OF CONTACT

As your Data Protection Officer we provide a Single Point Of Contact for your organisation. Whether it’s an enquiry from a parent, a question raised by a member of staff or a query from the ICO, our DPO will liaise in a professional, friendly and timely manner on your behalf to remove the stress of dealing with potentially uncomfortable situations that you aren’t fully confident of handling.

RISK ASSESSMENT & CONTROL OVERSIGHT

We want to ensure your School, College or University runs smoothly and that staff, governors, Senior Leadership Team have peace of mind. 


We do this by:

  • Interviewing staff to get a detailed understanding of what they do
  • Map out your processes to give you an holistic view
  • Identify potential risks
  • Work with your staff and SLT to provide Corrective Action Plans (CAPs) to eliminate risks identified
  • We will help to implement your CAPs / Track until complete

BUSINESS CONTINUITY PLAN

There are a number of incidents that could cause disruption to your education setting, from adverse weather conditions to cyber attacks.  DPO FOR EDUCATION offer a BCP planning service to ensure that your school or college can function in the face of potential threats:


  • Perform a Risk Assessment (RA) to identify events or scenarios that may threaten your setting
  • Conduct a Business Impact Analysis (BIA) to identify critical and or time sensitive activities, critical resources, dependencies both operational, technical and systems
  • Work with your Tech team to establish your Recovery Time Objective (RTO) and Recovery Point Objective (RPO)
  • Develop and create your BCP, provide training, support and framework to ensure you have a workable and robust plan


You may already have a plan in place so we can offer an audit/review of your current plan and scenario testing

Share by: