Best Practice Update

    You are here:  
  1. Home
  2. Best Practice Update
blue text a quick guide to: AI in black text. Blue robot dog. Data Protection education logo
Best Practice Updates

🎥🤖  Some of the organisations we are talking to are a little confused about AI, whether they should use it and if their staff already are using it or not.  We've put together a short video explaining the different types of AI, the risks and how you should start documenting your use.

New ICO data protection fees
Best Practice Updates

Using a statutory instrument on Jan 27th 2025, the Secretary of State for the Department for Science, Innovation and Technology has increased the data protection fees to be paid by data controllers.
Tier 1 (micro organisations) from £40 to £52; Tier 2 (small and medium organisations) from £60 to £78; Tier 3 (large organisations) from £2,900 to £3,763. This change will come in from February 27th 2025 and will be charged when your payment is next due.

A reminder for

WhatsApp icon on a mobile phone, blue text of Freedom of Information. Data Protection Education logo
Best Practice Updates

📲💬 We come across many organisations using WhatsApp as a communication tool with staff regularly and have previously highlighted some of the risks.  The ICO have recently published information about a case where WhatsApp messages had to be included in a Freedom of Information Request.

  1. ICO report on AI tools in recruitment
  2. DfE update to record keeping and management
  3. Update to data sharing for school immunisation programmes
  4. Early Years Settings and Cyber Security
  5. SLT Digital Lead Profile
  6. The role of governors in cyber security and data protection
  7. Navigating Privacy at the End of Term , Special Occasions and End of Year
  8. Contracts Register
  9. DfE Digital Standards Autumn Update
  10. The importance of knowing how to access your CCTV footage!
  11. Cyber Attack on a Special School
  12. Stealing children's data
  13. What is dark data? (and why does it matter?)
  14. Ofqual highlights the value of cyber security training in schools
  15. Searching for data when you receive a Subject Access Request
  16. Fylde Coast Academy Trust Cyber Attack This Week
  17. Calling all IT leads in schools and mult academy trusts!
  18. Ransomware cyber attack on a school in Bromley
  19. The Data Protection Lead/Champion Role
  20. Join Our Social Media Family!
  21. School hit by Cyber Attack
  22. New Academic Year Kick-Off!
  23. Cyber Security Best Practice Area
  24. DfE Digital Standards for Schools and Colleges Tracker
  25. New Policies, Documents, Letters and Posters page
  26. Schools and Trusts Best Practice Area
  27. The DPE Retention Schedule
  28. Making the Rounds Update (now includes reporting)
  29. ESFA Cyber Essentials Requirement for Colleges from 2024/2025
  30. ICO Reprimands a School
  31. Navigating Privacy at the End of Term , Special Occasions and End of Year
  32. Out of date technology
  33. Data Retention and the Pupil File
  34. Have you assigned your SLT Digital Lead yet?
  35. Getting Started with AI (Artificial Intelligence)
  36. Cyber attack on a school during half term
  37. Update to the DfE Digital Cyber Security Standards for Schools and Colleges (May 2024)
  38. The rise of cyber attacks in schools are causing pupils to miss classes
  39. ICO: Learning from the mistakes of others report
  40. Cyber attack on a Trust; the aftermath
  41. School Focus: The Vale Federation | Aylesbury
  42. DfE Dealing with Subject Access Requests (SARs) Guidance
  43. Update to the Guidance on Information Sharing from the DfE
  44. FOI Requests generated by Artificial Intelligence
  45. Social Media Best Practice Area
  46. Lettings Best Practice Area
  47. Appropriate filtering and monitoring definitions
  48. MFA Bombing - What is it?
  49. Protecting your Social Media Accounts
  50. Why we recommend using checklists
  51. Product Focus on Checklists : Initial Trust Plan
  52. Product Focus on Checklists : End of Term Checklist
  53. Product Focus on Checklists : Information and Cyber Security
  54. Product Focus on Checklists : Social Media
  55. Product Focus on Checklists : Lettings
  56. Product Focus on Checklists : Record of Processing
  57. Milk Island: The secret location that allows children to view restricted content on Google Maps
  58. Why Data Should Stay Put: Benefits of Keeping Data in Its Original System
  59. Product Focus on Checklists : Data Retention and Destruction
  60. Product Focus on Checklists : Data Migration
  61. Product Focus on Checklists : Biometrics
  62. Product Focus on Checklists : Supplier Due Diligence
  63. Free Cyber help, advice and training with the Cyber Resilience Centres
  64. The Perils of Paper: The Printing Vulnerability
  65. Product Focus on Checklists : FOI
  66. Product Focus on Checklists : Governors and Data
  67. Product Focus on Checklists : DPIA
  68. Product Focus on Checklists : Site Moves
  69. Product Focus on Checklists : Data Breaches
  70. Product Focus on Checklists : Subject Access Requests
  71. Product Focus on Checklists : Bring your own device
  72. Product Focus on Checklists : Working out of school/offsite
  73. Cyber Attack on a School
  74. Product Focus on Checklists : Redaction
  75. Why Due Diligence is Important: Fake apps
  76. Product Focus on Checklists : CCTV
  77. Product Focus on Checklists : Clear desk
  78. Product Focus on Checklists : Commitment to compliance
  79. Product Focus on Checklists : Photos and video
  80. Product Focus on Checklists : Passwords
  81. Product Focus on Checklists : Information Classification
  82. Free cyber training for staff
  83. DfE Digital Standards Update
  84. The Mother of all Breaches
  85. International Data Transfers (part 1): Navigating Cross-Border Data Transfers: Understanding EU SCCs, UK Addendum, and UK IDTA
  86. ClassCharts Possible Data Breach
  87. Where is your data stored?
  88. IAPP looks at AI privacy risks
  89. If you suspect a financial scam .....
  90. School Focus: St Bernadette's Catholic Primary School | Brighton
  91. Guardians of Privacy: 16. Social Media Checklist
  92. Guardians of Privacy: 15. Navigating Social Media in Educational Settings Summary
  93. Guardians of Privacy: 14. Social Media and Cyber Bullying
  94. Guardians of Privacy: 13. Social Media, Copyright and Intellectual Property
  95. Guardians of Privacy: 12. Social Media and Going Viral
  96. Guardians of Privacy: 11. Staff Social Media Accounts
  97. Guardians of Privacy: 10. Social Media and Cookies
  98. Guardians of Privacy: 9. Social Media and Morality
  99. New Resources for Schools from the ICO
  100. Guardians of Privacy: 8. Social Media Policies
  101. Guardians of Privacy: 7. Social Media Data Retention
  102. Guardians of Privacy: 6. Posting Safely
  103. Guardians of Privacy: 5. Social Media and Consent
  104. Guardians of Privacy: 4. Social Media Access Control
  105. Guardians of Privacy: 3. Social Media Channels
  106. Guardians of Privacy: 2. Law and Regulations
  107. Guardians of Privacy: 1. Social media, privacy and children
  108. The ICO reprimands a Multi Academy Trust
  109. KCSIE: Filtering, Monitoring and Privacy
  110. Guidance for the use of school email and applying email retention in schools
  111. Data Protection Tips for Early Years Settings
  112. Children's Privacy around the world is a puzzle
  113. Trust Initial Plan Checklist Update
  114. Records Management Best Practice Update
  115. Governors and Data Best Practice Area Update
  116. What do I need to redact?
  117. Trust Initial Plan for Data Protection Compliance (for Multi Academy Trusts)
  118. Google for Education Resources: Helping IT Admins meet DfE digital and technology standards
  119. Lettings Best Practice and Guidance
  120. Considerations when migrating to a new MIS
  121. Public bodies and sensitive data
  122. Get a DPE Badge for your website!
  123. ICO: 10 Step guide to sharing information to safeguard children
  124. Help after a Cyber Attack/Incident
  125. Data Protection and Cyber Security (Inset Day) Training Ideas
  126. How KCSIE is linked to Cyber Strategy
  127. Handling Freedom of Information Requests the right way
  128. Where's Harry the Hacker?
  129. The ICO Reprimands a school
  130. Subject Access Requests (SARs)
  131. Redaction Guidelines Updated
  132. Using WhatsApp in Schools
  133. How to contact us for support, subject access requests, data breaches and FOI's
  134. FOI: Reinforced Autoclaved Aerated Concrete
  135. FOI: Henry Jackson Society
  136. FOI: Vaccination Justifications
  137. How the Record of Processing Can Help You
  138. What does a Data Protection Officer Do?
  139. Blog: Best Practice on the Retention of Child Protection Information
  140. Carrying out Supplier Due Diligence
  141. Email and retention periods
  142. How Long Should You Keep Personal Data For?
  143. Sharing this year’s Nativity play online
  144. A quick introduction to the Phishing Simulation tool
  145. B&H FoI: Racist/religious incidents/bullying
  146. Protocol for Setting Up and Delivery of Online Teaching and Learning
  147. Class Dojo International Data Sharing
  148. Model Publication Scheme: Amendments, Improvements and Updates
  149. Transparency
  150. Parents and students covertly recording conversations
  151. SAR? ER? FOI?
  152. Research projects and GDPR
  153. Secure file transfer of files using Royal Mail
  154. Emergency contacts and consent
  155. Key elements of a successful DPIA
  156. FOI Publication Schemes
  157. Best Practice for Managing Photos and Video
  158. New Drip Feeds: Recognise and Respond to Subject Access Request
  159. When to contact the Data Protection Officer?
  160. National child measurement programme
  161. Make sure DPE is your registered DPO with the ICO
  162. Headteacher fined for breach of data protection legislation
©2025 Data Protection Education Ltd.

Search

  • News