Helping schools comply with the GDPR security principle

GDPRiS partners with CyberSecurity app Secure Schools to help schools comply with the GDPR security principle.

We are delighted to announce our partnership with Secure Schools to further help schools comply with data protection law and in particular the GDPR security principle.

Talking about the partnership, Tony Sheppard, Head of Services at GDPR in Schools said “The growing importance of security in schools cannot be understated. Having the right tools and resources is not just about ticking a box for compliance, but having the best knowledge and experience to hand is essential across so many areas of school life, whether it is teaching and learning, safeguarding or protecting your school from internal and external threats. Security by default and by design is key for data protection. We’re really pleased to be working in partnership with Secure Schools to help schools achieve compliance with this element of the law.”

Schools face the same cybersecurity threats as many other businesses and government organisations. Many do not have in-house expertise in information security, they rely solely on their IT manager, IT team or managed service provider. Information technology and information security are very different disciplines and the priorities of each are often in contradiction. The Secure Schools app addresses three critical areas of cybersecurity – securing technology, awareness training and assurance.

Paul Alberry, Co-founder and CEO, Secure Schools commented “Establishing a framework for discovering and assessing cybersecurity risk is key to determining the appropriate level of security to apply when processing personal data according to the GDPR security principle. It’s really important that schools have the tools to choose, apply and test those measures. We’re excited to partner with GDPRiS and join them in helping schools achieve compliance.”

Part of the NCSC Cyber Accelerator programme, the Secure Schools app is designed specifically to help schools understand security risks, meet the Cyber Essentials security guidance outlined by our Government’s National Cyber Security Centre (NCSC) and comply with the GDPR security principle in accordance with data protection guidance set by the Information Commissioner’s Office (ICO).

The synergy between GDPRiS and Secure Schools ensures schools have the right tools to monitor and manage their day-to-day compliance with data protection law and work toward cyber essentials.

Both systems complement each other with GDPRiS focussing on compliance with all elements of data protection law and Secure Schools focussing on Cyber Security to ensure that our systems are safe from hacking, therefore minimising this element of risk with regards to data breaches.

Sophie Hick, Business Manager, Stocksbridge Junior School

Read our joint case study to find out how Stocksbridge Junior School is using GDPRiS and Secure Schools to comply with all elements of data protection law, including the GDPR security principle.