Best Practice Update

    You are here:  
  1. Home
  2. Best Practice Update
New ICO data protection fees
Best Practice Updates

New Data Protection Fees

Using a statutory instrument on Jan 27th 2025, the Secretary of State for the Department for Science, Innovation and Technology has increased the data protection fees to be paid by data controllers.
Tier 1 (micro organisations) from £40 to £52; Tier 2 (small and medium organisations) from £60 to £78; Tier 3 (large organisations) from £2,900 to £3,763. This change will come in from February 27th 2025 and will be charged when your payment is next due.

A reminder for

Read more …

WhatsApp icon on a mobile phone, blue text of Freedom of Information. Data Protection Education logo
Best Practice Updates

WhatsApp and FOI's: ICO Warnings

📲💬 We come across many organisations using WhatsApp as a communication tool with staff regularly and have previously highlighted some of the risks.  The ICO have recently published information about a case where WhatsApp messages had to be included in a Freedom of Information Request.

Read more …

Photos of early years children on an orange background. Early Years settings in blue text. Data Protection and Cyber security in white text. Data Protection Education logo and website address: www.dataprotection.education
Best Practice Updates

Early Years Settings and Cyber Security

🧸 🚼 As digital technology continues to increase in our educational settings, Early Years settings are increasingly integrating digital tools into their operations.  While this might enhance efficiency and communication, it also raises concerns and challenges about cyber security and data protection.

Read more …

  1. SLT Digital Lead Profile
  2. The role of governors in cyber security and data protection
  3. Navigating Privacy at the End of Term , Special Occasions and End of Year
  4. Contracts Register
  5. DfE Digital Standards Autumn Update
  6. The importance of knowing how to access your CCTV footage!
  7. Cyber Attack on a Special School
  8. Stealing children's data
  9. What is dark data? (and why does it matter?)
  10. Ofqual highlights the value of cyber security training in schools
  11. Searching for data when you receive a Subject Access Request
  12. Fylde Coast Academy Trust Cyber Attack This Week
  13. Calling all IT leads in schools and mult academy trusts!
  14. Ransomware cyber attack on a school in Bromley
  15. The Data Protection Lead/Champion Role
  16. Join Our Social Media Family!
  17. School hit by Cyber Attack
  18. New Academic Year Kick-Off!
  19. Cyber Security Best Practice Area
  20. DfE Digital Standards for Schools and Colleges Tracker
  21. New Policies, Documents, Letters and Posters page
  22. Schools and Trusts Best Practice Area
  23. The DPE Retention Schedule
  24. Making the Rounds Update (now includes reporting)
  25. ESFA Cyber Essentials Requirement for Colleges from 2024/2025
  26. ICO Reprimands a School
  27. Navigating Privacy at the End of Term , Special Occasions and End of Year
  28. Out of date technology
  29. Data Retention and the Pupil File
  30. Have you assigned your SLT Digital Lead yet?
  31. Getting Started with AI (Artificial Intelligence)
  32. Cyber attack on a school during half term
  33. Update to the DfE Digital Cyber Security Standards for Schools and Colleges (May 2024)
  34. The rise of cyber attacks in schools are causing pupils to miss classes
  35. ICO: Learning from the mistakes of others report
  36. Cyber attack on a Trust; the aftermath
  37. School Focus: The Vale Federation | Aylesbury
  38. DfE Dealing with Subject Access Requests (SARs) Guidance
  39. Update to the Guidance on Information Sharing from the DfE
  40. FOI Requests generated by Artificial Intelligence
  41. Social Media Best Practice Area
  42. Lettings Best Practice Area
  43. Appropriate filtering and monitoring definitions
  44. MFA Bombing - What is it?
  45. Protecting your Social Media Accounts
  46. Why we recommend using checklists
  47. Product Focus on Checklists : Initial Trust Plan
  48. Product Focus on Checklists : End of Term Checklist
  49. Product Focus on Checklists : Information and Cyber Security
  50. Product Focus on Checklists : Social Media
  51. Product Focus on Checklists : Lettings
  52. Product Focus on Checklists : Record of Processing
  53. Milk Island: The secret location that allows children to view restricted content on Google Maps
  54. Why Data Should Stay Put: Benefits of Keeping Data in Its Original System
  55. Product Focus on Checklists : Data Retention and Destruction
  56. Product Focus on Checklists : Data Migration
  57. Product Focus on Checklists : Biometrics
  58. Product Focus on Checklists : Supplier Due Diligence
  59. Free Cyber help, advice and training with the Cyber Resilience Centres
  60. The Perils of Paper: The Printing Vulnerability
  61. Product Focus on Checklists : FOI
  62. Product Focus on Checklists : Governors and Data
  63. Product Focus on Checklists : DPIA
  64. Product Focus on Checklists : Site Moves
  65. Product Focus on Checklists : Data Breaches
  66. Product Focus on Checklists : Subject Access Requests
  67. Product Focus on Checklists : Bring your own device
  68. Product Focus on Checklists : Working out of school/offsite
  69. Cyber Attack on a School
  70. Product Focus on Checklists : Redaction
  71. Why Due Diligence is Important: Fake apps
  72. Product Focus on Checklists : CCTV
  73. Product Focus on Checklists : Clear desk
  74. Product Focus on Checklists : Commitment to compliance
  75. Product Focus on Checklists : Photos and video
  76. Product Focus on Checklists : Passwords
  77. Product Focus on Checklists : Information Classification
  78. Free cyber training for staff
  79. DfE Digital Standards Update
  80. The Mother of all Breaches
  81. International Data Transfers (part 1): Navigating Cross-Border Data Transfers: Understanding EU SCCs, UK Addendum, and UK IDTA
  82. ClassCharts Possible Data Breach
  83. Where is your data stored?
  84. IAPP looks at AI privacy risks
  85. If you suspect a financial scam .....
  86. School Focus: St Bernadette's Catholic Primary School | Brighton
  87. Guardians of Privacy: 16. Social Media Checklist
  88. Guardians of Privacy: 15. Navigating Social Media in Educational Settings Summary
  89. Guardians of Privacy: 14. Social Media and Cyber Bullying
  90. Guardians of Privacy: 13. Social Media, Copyright and Intellectual Property
  91. Guardians of Privacy: 12. Social Media and Going Viral
  92. Guardians of Privacy: 11. Staff Social Media Accounts
  93. Guardians of Privacy: 10. Social Media and Cookies
  94. Guardians of Privacy: 9. Social Media and Morality
  95. New Resources for Schools from the ICO
  96. Guardians of Privacy: 8. Social Media Policies
  97. Guardians of Privacy: 7. Social Media Data Retention
  98. Guardians of Privacy: 6. Posting Safely
  99. Guardians of Privacy: 5. Social Media and Consent
  100. Guardians of Privacy: 4. Social Media Access Control
  101. Guardians of Privacy: 3. Social Media Channels
  102. Guardians of Privacy: 2. Law and Regulations
  103. Guardians of Privacy: 1. Social media, privacy and children
  104. The ICO reprimands a Multi Academy Trust
  105. KCSIE: Filtering, Monitoring and Privacy
  106. Guidance for the use of school email and applying email retention in schools
  107. Data Protection Tips for Early Years Settings
  108. Children's Privacy around the world is a puzzle
  109. Trust Initial Plan Checklist Update
  110. Records Management Best Practice Update
  111. Governors and Data Best Practice Area Update
  112. What do I need to redact?
  113. Trust Initial Plan for Data Protection Compliance (for Multi Academy Trusts)
  114. Google for Education Resources: Helping IT Admins meet DfE digital and technology standards
  115. Lettings Best Practice and Guidance
  116. Considerations when migrating to a new MIS
  117. Public bodies and sensitive data
  118. Get a DPE Badge for your website!
  119. ICO: 10 Step guide to sharing information to safeguard children
  120. Help after a Cyber Attack/Incident
  121. Data Protection and Cyber Security (Inset Day) Training Ideas
  122. How KCSIE is linked to Cyber Strategy
  123. Handling Freedom of Information Requests the right way
  124. Where's Harry the Hacker?
  125. The ICO Reprimands a school
  126. Subject Access Requests (SARs)
  127. Redaction Guidelines Updated
  128. Using WhatsApp in Schools
  129. How to contact us for support, subject access requests, data breaches and FOI's
  130. FOI: Reinforced Autoclaved Aerated Concrete
  131. FOI: Henry Jackson Society
  132. FOI: Vaccination Justifications
  133. How the Record of Processing Can Help You
  134. What does a Data Protection Officer Do?
  135. Blog: Best Practice on the Retention of Child Protection Information
  136. Carrying out Supplier Due Diligence
  137. Email and retention periods
  138. How Long Should You Keep Personal Data For?
  139. Sharing this year’s Nativity play online
  140. B&H FoI: Racist/religious incidents/bullying
  141. Protocol for Setting Up and Delivery of Online Teaching and Learning
  142. Class Dojo International Data Sharing
  143. Model Publication Scheme: Amendments, Improvements and Updates
  144. Transparency
  145. Parents and students covertly recording conversations
  146. SAR? ER? FOI?
  147. Research projects and GDPR
  148. Secure file transfer of files using Royal Mail
  149. Emergency contacts and consent
  150. Key elements of a successful DPIA
  151. FOI Publication Schemes
  152. Best Practice for Managing Photos and Video
  153. New Drip Feeds: Recognise and Respond to Subject Access Request
  154. When to contact the Data Protection Officer?
  155. National child measurement programme
  156. Make sure DPE is your registered DPO with the ICO
  157. Headteacher fined for breach of data protection legislation
©2025 Data Protection Education Ltd.

Search

  • News