Representation to ICO
Being investigated by the Information Commissioner’s Office (ICO) is not something any business would want to experience.
As if a data breach weren’t already stressful enough, it means having to respond to a torrent of questions from the regulator. A tough call for anyone.
Over the years, we’ve supported many clients through ICO investigations. Helping you respond to those difficult questions, and talking to the ICO’s enforcement officers on your behalf, means we can take a burden off your shoulders and could also secure a more positive outcome for you.
Remember, there are strict rules over how much time you have in which to investigate any potential breach, and over whether or not to report any breach you do identify.
So don’t fall foul of the ICO: fines can be significant, and the reputational damage (not least through press reporting and even appearing on the ICO website) can be very painful. Instead, call in the experts – we know what to do, when and how.
“I frequently contact Data Protection Consultancy for specific advice as and when situations arise. They have always been able to answer my queries promptly and always provide me with formal written advice in addition to that given by telephone. The charges have been reasonable and fair, charging only for the work actually done.”
“Data Protection Consultancy provided pragmatic guidance on strategies to move us from good to great. They’ve been with us every step of the way in navigating both UK data legislation changes and on the international data transfer scene.”
“On multiple occasions, Data Protection Consultancy have gone out of their way to be of help to us with emerging situations.”
“Our insurance broker now considers us to be one of their best-protected clients.”
“Internal engagement with data protection issues is at an all-time high and we’ve been able to satisfy our educational customers that we meet the stringent data security requirements of the DFE.”
“Their approach was thorough, tactful and persuasive about the changes needed. Suggestions for change were always practical and interaction with staff was professional at all times. Staff reflected back how informative it was, and we started seeing a sense of interest and engagement in data protection compliance as a result.”
“DPC delivered their final report on deadline/budget and was written in a way that it was easy to understand. This was followed by a presentation to our leadership team, which was professional in manner, demonstrated their knowledge and expertise, and was persuasive about why change needed to happen.”
“David has kept us up-to-date with emerging data governance issues. I have found him very helpful when we asked him to review our newly written data protection policy.”
“Data Protection Consultancy has worked closely with me on delivering of series of workshops on the new EU data protection regulation. Their preparation was very thorough and professional, and their knowledge and expertise was clearly demonstrated.”
“You explained the subject clearly, in a way that was easy to follow and your enthusiasm for the subject made a potentially dry subject an interesting one. You have an effective and friendly delivery style, which resulted in very positive feedback from the training participants.”
“Our consultant’s preparation was thorough and professional at all times, and their data protection knowledge and expertise was clear. The recommendations were also clear, concise and professionally produced, and were accepted by the senior managers of our organisation.”
“They have continued to provide support and assistance following the audit, which has been
extremely beneficial. I would have no hesitation in contacting the Data Protection Consultancy for advice which I know will always be knowledgeable and professional.”
“He quickly developed a good understanding of the business and our data protection issues. The resulting audit report was concise and informative, facilitating the preparation of an organisational data protection action plan.”
“Our consultant has always provided us with a prompt response and good advice. He has always been friendly, courteous and professional. I would have no hesitation in recommending the Data Protection Consultancy.”
“During our 14-day consultancy project, two things became immediately obvious. Firstly the knowledge and skill of the consultant, and secondly his ability to share this knowledge in a friendly but professional manner. No matter how small or trivial the question, he always presented a well-thought-out answer.”
“David advised us on a number of contractual issues and produced many documents, policies and guidelines which were easy to implement. This, combined with effective training and his desire to bring a practical approach to the legislation within our business, has been excellent.”
“We approached Data Protection Consultancy for a review of our systems and procedures. We had a very narrow time-frame and were really impressed that they offered to visit our site on a weekend to fit in with us.”
“At the end of the process we were provided with a clear and concise document which identified areas of existing good practice but also where and how improvements could be made. We also received a set of policy and procedure documents to help us maintain our compliance. I have been very pleased with the prompt and expert service.”
“We have always received an excellent service and would not hesitate in recommending them.”
“David Taylor came into our chambers to conduct a data protection health check. He was professional, knowledgeable about chambers procedure, and helpful on the day. Just as importantly, he has provided ongoing support and advice. I would have no hesitation in recommending him.”
“We have over 50,000 tenants and take seriously our responsibilities to ensure that their sensitive personal data is processed properly. Our systems are complex and we have many partners with whom we are required to share data. David Taylor understood how the business works and was able to provide pragmatic and sensible advice to assist us in complying with our obligations.”
“Our consultant had a friendly yet professional approach and worked well with my staff without taking up a disproportionate amount of their time.”
“Your audit identified the issues which needed resolving, provided me with all the relevant documentation in order to meet our obligations, and did so with a light touch and at a very
competitive price. This relieved me of a significant administrative burden, for which I thank you, and I would happily recommend your services to other sets of chambers.”
“Their supporting reports and documentation, including risk assessments, are very beneficial – as is their ongoing support following the visit.”
“I have always found their approach to be highly professional, informed and yet pragmatic when necessary. Their authoritative position on data protection issues inspires confidence, and their response to requests for advice are both prompt and complete.”
“The reports produced were thorough, concise and most helpful. Mr Taylor has given the school comfort to know that its existing data protection systems are adequate, compliant and secure. We have been most grateful to him for this peace of mind and for his most professional approach.
“The final audit report (of all our systems, processes and documentation) was clear and to the point and demonstrated an excellent knowledge of the Data Protection Act. We were also provided with a comprehensive collection of bespoke policies, procedures and contracts. I was particularly impressed with David’s attention to detail and thoroughness, and his ability to explain what seems to be a complicated piece of legislation.”
“I was reassured that they understood barristers’ chambers and I asked them to carry out an audit and to make recommendations. They did this in the timeframe and for the fee agreed. Their recommendations were practical and helpful. I have no hesitation in recommending their work to other barristers’ chambers.”