Frequently Asked Questions

We deliver a full suite of solutions, including DPO-as-a-Service (DPOaaS), data protection and cyber security consultancy, data protection & information governance (DP & IG) training, benchmarking & auditing, and specialised DPOaaS for schools.

DPOaaS is an efficient, cost-effective way to meet your legal requirement (or boost accountability even if not mandatory) by having an independent expert DPO, who monitors compliance, advises on DPIAs and policies, liaises with ICO, and supports incident and request management.

Yes, while some organisations aren't legally required to appoint a DPO, our DPOaaS service still gives you professional assurance and demonstrates accountability to stakeholders.

We offer bespoke advisory services tailored to your needs, whether a one-off guidance session or a longer-term maturity improvement programme across data protection, information governance, cyber security, and network security.

We develop customised training packages on GDPR/UK GDPR, confidentiality, information rights, specialist information sharing, privacy by design, breach response simulations, Records of Processing (ROPA), and more. These can be delivered virtually or in person.

This is a BCS-accredited, five-month professional course designed for IG and data privacy practitioners across sectors like health, education, finance, and tech—blending self-paced modules and live expert-led sessions, led by award-winning experts like Tania Palmariellodiviney and Barry Moult.

We assess your current data protection and cyber maturity, benchmark it against relevant legal and regulatory frameworks, and provide you with actionable recommendations to improve and demonstrate compliance.

A holistic Information Governance (IG) service tailored to the education sector—empowering staff, informing governors, and ensuring personal data (for students, families, staff) is used safely and in compliance.

Our consultants bring operational-level experience across data protection, information governance, and cybersecurity, and deliver practical, tailored strategies with a friendly, business-oriented approach.

Simply reach out via your website’s contact form or email to request more information, discuss your needs, or arrange a consultation, whether for DPO services, audits, training, or bespoke consultancy.

Yes, our services are flexible. We can deliver consultancy and training remotely (online) or in person (on-site), depending on your preference and needs.

By evaluating current data protection and cyber maturity, identifying gaps relative to regulatory and best-practice standards, and providing a clear roadmap for improvements to elevate compliance and resilience.

Start with a Gap Assessment. It gives you a clear view of what’s missing, what’s working, and what your roadmap should look like.

We work across diverse sectors including public/private health and social care, hospitality, leisure, retail, education, charities, and not-for-profits.

Yes, we currently support GPs, ICBs, NHS Trusts, local authorities, and hospices. We understand the pressures of DSPT, DSARs, FOI, and Caldicott principles, and support localised decision-making.

We help GPs align with ICB digital and data strategies, offering webinars, templates, DPIA support, breach guidance, and more—ensuring compliance and readiness across practices.

• DPO: Oversees data protection compliance

• Caldicott Guardian: Ensures patient information is used ethically (health/social care)

• SIRO: Manages information risks at a senior level We offer all three services as needed.