top of page

Data Protection & Information Governance Training

What is the DP & IG Training?

Our bespoke training packages are designed to make Data Protection and Information Governance clear, practical, and relevant to your organisation.

Whether delivered virtually or in-house, we tailor every session to your audience—engaging general staff with the essentials and equipping specialist practitioners with deeper expertise.

From UK GDPR and GDPR to the Common Law of Confidentiality, our training goes beyond tick-box compliance. We help your teams understand the “why” behind data protection, embedding a culture of accountability and resilience across your organisation.

​

Why is it important?

  • Embedding a Strong Data Culture: Effective data protection stems not just from policies, but from a culture where every employee understands and values data privacy—not just as a legal obligation, but as something meaningful and practical.

  • Legal Compliance: Organisations must meet data protection regulations robustly and demonstrate accountability. Tailored training supports this and elevates staff awareness.

  • Operational Resilience: Well-trained teams better understand risk and are more proactive—reducing data incidents and improving response effectiveness.

 

What is included in this service?

Clients benefit from a fully customised training solution that matches their organisational context, with tailored content designed to meet specific needs whether delivered virtually or in person.

Our sessions are role-specific, ensuring relevance and impact for both general staff and specialist practitioners.

Training covers a comprehensive range of topics, including UK GDPR, the Common Law Duty of Confidentiality, and broader Information Governance principles.

We also offer flexible delivery formats to suit organisational preferences, providing options for virtual, in-house, or hybrid sessions.

​

Training Topics We Offer:

  • Core Modules (All Staff & General Awareness)

  • Introduction to UK GDPR and Data Protection Principles

  • Understanding the Common Law Duty of Confidentiality

  • Handling Data Subject Access Requests (DSARs)

  • Recognising and Reporting Data Breaches

  • Privacy Notices and Transparency Obligations

  • Managing Consent and Lawful Basis for Processing

  • Good Records Management Practices

  • Privacy Awareness and Culture Development

​

Practitioner & Leadership Modules:

  • Advanced GDPR for DPOs and IG Leads

  • Roles and Responsibilities of the SIRO, DPO, and Caldicott Guardian

  • Information Sharing Best Practices and Risk Mitigation

  • Privacy by Design and Default – Practitioner Workshop

  • DPIA Deep Dive: Assessing and Documenting Risk

  • Incident Response Tabletop Exercise

  • Information Rights and Access to Records (including FOI, Access to Health Records, and third-party disclosures)

  • Data Protection for Project Leads – digital transformation and national initiatives

  • Training for Governors, Trustees, and Board Members (IG oversight responsibilities)

​

Accredited Training: (in partnership with BJM IG Privacy)

  • 5-Month Accredited IG Practitioner Certification Programme (BCS (British Computer Society) Tech 10 accredited programme)

​

What value and assurance will you get?

  • Custom-fit Training: No generic, one-size-fits-all modules—training is shaped around organisational values and current challenges.

  • Enhanced Awareness & Accountability: Participants are more likely to internalise the “why” behind data protection practices—transforming compliance into everyday behavior .

  • Improved Risk Mitigation: Teams trained with context and relevance build organizational resilience and reduce likelihood of data errors.

  • Adaptable and Supportive Delivery: Whether remote or onsite, the training format meets the client where they are, making learning accessible and realistic.

bottom of page