I currently manage a small Information Governance team for a Local Authority Partnership, protecting the data of over 100k residents in Lincolnshire.

I have a passion to understand information, information flows and the lawful use of information especially relevant with the adoption of the GDPR EU requirements, the Data Protection Act 2018 and the Privacy and Electronic Communications Regulation.

I have advised all levels of management on matters relating to Data Protection, Article 8, Information Security, Information management and compliance and have a drive to embed ethics alongside good information management and security practice.

I have experience of a number of compliance frameworks such as ISO27001, PCI-DSS, PSN CoCo and documenting the evidence base to satisfy legislative and audit requirements.

I have the skills to translate the extreme technical challenges, yet also understand the people issues related to data. I also enjoy leveraging business intelligence from information repositories to understand data flows, and any benefits that can be lawfully used.

I enjoy the challenge of using good information management principles to build on the effectiveness and efficiency of an organisations – and stand by the edict that Data Protection should never say no!

My most recent role refreshes my working knowledge of EIR & FOI leading a team delivering this service along with complaints and LGO complaints. Building a team across 2 local Authorities has been an interesting challenge, merging different compliance frameworks and procedures - and introducing a privacy aware culture as one of the limited controls for DPA.