Responding to Freedom of Information (FOI) requests correctly and within mandated timescales is an important part of complying with the principles of transparency and accountability under the GDPR and the Freedom of Information Act 2000. We have put...

Did you know, in 2023, 76% of UK ransomware victims were in the education sector? Schools are prime targets for cybercriminals, with phishing attacks leading the way. In fact, over 94% of educational organisations reported being targeted by phishing...

Romance scams continue to persist and evolve with technology, scammers are now targeting victims across multiple platforms including social media, gaming communities, and even professional networks like LinkedIn. According to Experian recent data...

As we celebrate UK Safer Internet Day on 11 February 2025, let’s take a moment to reflect on this year’s theme of "Too Good to Be True? Protecting yourself and others from scams online" highlighting the importance of being cautious and vigilant in...

Under UK GDPR, and as Controller, you must have a lawful basis for processing personal data (and remember that anything you do with personal data – including storing it or deleting it – counts as processing). UK GDPR won’t make processing lawful...

Data breaches, Cyber Security incidents, Subject Access Requests (SARs), and Freedom of Information (FOI) requests can often lead to a variety of complaints that require meticulous and thoughtful handling. These situations, while challenging,...

Data privacy is a growing concern and schools play a critical role in safeguarding the personal information of their students, staff, and parents. As schools become more data-driven, maintaining transparency and accountability regarding how personal...

SARs (Subject Access Requests) can be challenging for schools to manage, especially given the vast amount of personal data schools handle. Here's a comprehensive guide to handling SARs more effectively while maintaining compliance with data...

In today's digital landscape, cybersecurity incidents and associated data breaches are no longer a matter of "if" but "when." A robust incident log is one of the most valuable tools in an organisation's security arsenal. Here's why:

In today's schools, effective information sharing stands as a cornerstone of child protection and safeguarding. The 2024 Keeping Children Safe in Education (KCSIE) guidance emphasises that sharing information is crucial not only in identifying and...