9ine Consulting Blog

5 Reasons Why Robust, Objective Cybersecurity Assessments are More Important Than Ever

5 Reasons Why Robust, Objective Cybersecurity Assessments are More Important Than Ever

Whichever sector you operate in, new data protection law makes it a legal requirement that you assess the risks to your IT systems and services. Your journey to compliance should therefore start with a thorough assessment of your current IT and data ...
The ICO DPIA Guidance

The ICO DPIA Guidance

In May 2018, the Information Commissioner's Office (the UK data protection supervisory authority) published guidance on the completion of data protection impact assessments (DPIAs). The guidance is nothing new; it summarises the European Data ...
Breach Notification Under the GDPR

Breach Notification Under the GDPR

The recent revised and adopted guidelines on personal data breach notification under the GDPR have been published. These guidelines set out examples of what a personal data breach is and the actions expected of data controllers and processors. This ...
GDPR: The Principle of Accountability

GDPR: The Principle of Accountability

The GDPR principle of ‘accountability’ requires schools to demonstrate compliance with the regulation. Within this update we discuss what this means in practice. For more information on how we can support your school, see our DPO Essentials Service ...
IT Manager sentenced to 4.5 years in prison after 9ine's IT audit

IT Manager sentenced to 4.5 years in prison after 9ine's IT audit

A former IT Manager at a school in Surrey has been found guilty of seven offences including fraud, cyber-crime and burglary following discoveries made by 9ine Consulting in an IT audit and assurance review. 9ine were commissioned in January of 2016 ...
The Outsourcing of Your DPO in Full: A Scandal in the Making

The Outsourcing of Your DPO in Full: A Scandal in the Making

The GDPR makes it a requirement for all public authorities (state funded schools) to have a designated Data Protection Officer (DPO). All other types of school must document and undertake an internal analysis to determine whether a DPO needs ...
Data Protection Law - Ambulance Chasers, Cowboys and Pirates…

Data Protection Law - Ambulance Chasers, Cowboys and Pirates…

Education organisations are facing a challenge to understand how changes to recent data protection law has changed their auditing and compliance obligations. The GDPR brought with it a range of accountabilities in areas such as risk management, ...
ICO Q4 Data Security Incident Report

ICO Q4 Data Security Incident Report

After months of waiting, the GDPR is recognised into law across the EU. Within the UK this was through the Data Protection Act 2018 and in countries across the EU, through similar legislation. In countries outside the EU, the obligations of the GDPR ...
The ICO Regulatory Action Policy

The ICO Regulatory Action Policy

The Information Commissioner's Office (the UK data protection supervisory authority) last week published its Regulatory Action Policy. The policy has been created to provide direction and focus for those they regulate, specifically the action that ...
The DPO and managing your Data Protection obligations

The DPO and managing your Data Protection obligations

There is confusion in regard to the appoint of a Data Protection Officer (DPO), their responsibilities, the Data Controller's responsibility to the DPO, and also whether those obligations dissipate if a DPO isn't legally required. This article ...

Subscribe to email updates

TWEET US @9ineConsulting

Awards & Accreditations