We understand the pressure you're under to comply with data protection laws

We offer data protection officer services to over 600 public sector clients. From local schools to national sports governing bodies, charities and tech start-ups, we can adapt our service to suit you. We also work with organisations that have their own data protection officer but need an extra line of support.

Guiding you through the complex world of data protection

Although we have left the EU, the GDPR has been brought into UK law and still applies to organisations in the UK. The regulations exist to make sure we all use information safely and responsibly.

Managing data can seem like a daunting task, but we have a team of qualified staff on hand to help. We act as the DPO for several local authorities, council-owned companies and national sports governing bodies. If you work within the public sector, we are here to support you.

We also work with over 600 schools and academies and are experts in managing information risks in the education sector.  Find out more about our popular DPO service for schools and multi-academy trusts.

Do you need a DPO?

Data protection legislation might appear complicated but the main laws to consider are:

The UK GDPR requires that all public authorities, including schools, appoint a DPO. In addition, many organisations are required to appoint a DPO because their core activities involve using or storing large amounts of sensitive data.

Others choose to assign a DPO due to the practical benefits. For example, appointing a DPO can help cultivate a positive and proactive data protection culture at your organisation, facilitating safe data use and limiting operational risk.

The DPO can be based in-house, shared with other organisations or outsourced.

Role of the DPO

Your DPO must act independently and objectively, and is there to:

  • Inform and advise on data protection obligations
  • Support you to monitor internal compliance
  • Assist you with Data Protection Impact Assessments (DPIAs)
  • Provide training and guidance for your staff
  • Act as a point of contact for the Information Commissioner’s Office (ICO)

Find out more about the role of the DPO by reading the ICO’s guide to data protection officers.

Our data protection officer services

Our DPO service ensures help is always on hand to discuss your data protection queries. We offer a range of packages that can be tailored to your needs. Our standard DPO contracts include:

  • A suite of template policies, privacy notices and model logs
  • A dedicated Officer to provide unlimited, expert advice
  • Relevant training for your staff
  • Annual compliance audit and bespoke action plan
  • Regular contact including online meetings and site visits, as require
  • Support with data breaches and data subject requests
  • Correspondence and liaison with the ICO
  • Support with DPIAs and other documentation

For full details of our specific DPO service for schools and multi-academy trusts, head to the schools DPO page or our data protection support for MATs page.

To enquire about our DPO service, please get in touch.

20+ years of experience

We have a large team of data protection experts who are all professionally qualified or currently training. They specialise in working with schools and other education bodies, local authorities, charities and the wider public sector.

At Veritau we provide a variety of assurance services, including internal audit, counter fraud, risk management and information governance. As our client, you have access to wide-ranging expertise and sector-specific knowledge.

Andy Nutting - Information Governance Manager

Andy Nutting

Information Governance Manager

Andy has over 25 years’ experience working in information governance within local government. He specialises in the development and implementation of bespoke information strategy, policy and processes. Andy has a professional interest in making information open and transparent, and enhancing ethical considerations around data.

Helen Swan - Assistant Director – Information Governance

Helen Swan

Assistant Director – Information Governance

Helen is a professionally qualified information governance practitioner with experience in delivering services across the public sector. She oversees Veritau’s schools, councils and access teams, focusing on business development and client relationship management.

Rosie Kelly - Information Governance Manager

Rosie Kelly

Information Governance Manager

Rosie is an experienced DPO with a background in the legal sector, who holds the CIPP/E certification from the IAPP. She specialises in UK GDPR compliance in the education sector, including expertise in Edtech and data protection governance in Multi-Academy Trusts. Rosie leads on training and resources, contract assurances, international data transfers and promoting awareness of regulatory changes.

A Black and white image of an employee smiling for a picture

Julie Ferguson

Information Governance Manager

Julie is a professionally qualified data protection practitioner with a wealth of experience in working across the public, private and education sectors. She has a legal background and specialises in helping clients navigate the regulatory landscape to enhance compliance. Julie oversees the successful delivery of services to our Council and other DPO clients and has a strong professional interest in improving internal processes and upholding privacy rights for individuals.

Get in touch

Do you need a DPO or want to discuss how we can support you? Please get in touch.