.jpg)
An independent secondary boarding school, with a long-established history, approached Securys to fully assess its preparedness for the introduction of the GDPR. With over 550 pupils and more than 100 teachers and staff, the bursar wanted a thorough review of its GDPR readiness, including required remediation actions to ensure compliance.
Background:
The client objective was to ensure that operations and fundraising are fully compliant with privacy legislation, and that the privacy rights of children are respected in a complex and international context.
Our approach:
Securys conducted detailed interviews as well as a process mapping and document review exercise. We compiled a data catalogue and RoPA and identified processes requiring DPIA and/or LIA support. We delivered a detailed report with a risk dashboard and recommendations which was presented to the governors and the Head.
Securys provided support throughout the remediation process and are now retained as the school’s Data Protection Officer by the bursar.