9ine Consulting Blog

Risk management - how to effectively manage cyber security risks in your school

Risk management - how to effectively manage cyber security risks in your school

On February 14 by Dan Cleworth
The following is the first in a series of blogs where 9ine explore how schools can implement technical and organisational changes in order to further protect the confidentiality, integrity and availability of your information and information ...
Action Required: BREXIT & the transfer of data to/from UK in the event of no-deal

Action Required: BREXIT & the transfer of data to/from UK in the event of no-deal

On February 14 by Mark Orchison
Schools need to be prepared and ready for a no-deal Brexit The EDPB has just published adopted (12th February 2019) guidance on the requirements on organisations processing personal and sensitive data to and from the UK.
Global Research: The state of Data Protection in Schools

Global Research: The state of Data Protection in Schools

On January 28 by Cam Strange
Research Headlines
Breach Management in Schools - Keep calm and follow procedure

Breach Management in Schools - Keep calm and follow procedure

On December 14 by Audrey Olden
Do you know who holds your personal information? How reassured do you feel that your information is being managed in line with the General Data Protection Regulation (GDPR) principles underpinning your national data protection laws? Are you ...
Subject Access Requests in Schools

Subject Access Requests in Schools

On November 16 by Audrey Olden
The General Data Protection Regulation (GDPR) forms part of the data protection regime in a number of European countries through their national statute. In the UK, this is reflected in the revised 2018 Data Protection Act (DPA 2018). What we are ...
The ICO DPIA Guidance

The ICO DPIA Guidance

On July 11 by Mark Orchison
In May 2018, the Information Commissioner's Office (the UK data protection supervisory authority) published guidance on the completion of data protection impact assessments (DPIAs). The guidance is nothing new; it summarises the European Data ...
The Outsourcing of Your DPO in Full: A Scandal in the Making

The Outsourcing of Your DPO in Full: A Scandal in the Making

On June 27 by Mark Orchison
The GDPR makes it a requirement for all public authorities (state funded schools) to have a designated Data Protection Officer (DPO). All other types of school must document and undertake an internal analysis to determine whether a DPO needs ...
Data Protection Law - Ambulance Chasers, Cowboys and Pirates…

Data Protection Law - Ambulance Chasers, Cowboys and Pirates…

On June 22 by Mark Orchison
Education organisations are facing a challenge to understand how changes to recent data protection law has changed their auditing and compliance obligations. The GDPR brought with it a range of accountabilities in areas such as risk management, ...
ICO Q4 Data Security Incident Report

ICO Q4 Data Security Incident Report

On May 30 by Mark Orchison
After months of waiting, the GDPR is recognised into law across the EU. Within the UK this was through the Data Protection Act 2018 and in countries across the EU, through similar legislation. In countries outside the EU, the obligations of the GDPR ...
The ICO Regulatory Action Policy

The ICO Regulatory Action Policy

On May 15 by Mark Orchison
The Information Commissioner's Office (the UK data protection supervisory authority) last week published its Regulatory Action Policy. The policy has been created to provide direction and focus for those they regulate, specifically the action that ...
All posts

Subscribe to email updates

Posts by Topic

see all
TWEET US @9ineConsulting

Awards & Accreditations

© 2019. Nine Consulting Ltd is a limited liability company registered in England and Wales (Registered Number 06829839) All rights reserved. Privacy policy