Enter your keyword

Schools

Satswana Pricing and Services for Schools.

Introduction

We are very privileged to have been selected to provide our “fractional” DPO service to a large number of schools nationally, based solely on recommendations from existing customers.

 

Our approach continues to be to create a personal long term relationship, respecting every school’s individual personality (and the personalities that run them), even when they are combined within a Trust.

 

We have developed our approach to GDPR (or if you prefer, DPA 2018) compliance together with our customers, and we believe that we are judged solely on how painlessly and effectively we execute that. To experience that for your school please contact us to arrange a meeting.

 

We are not an ‘online’ service, we are individuals who you will get to know, who you can talk to, and meet. We expect to be able to guide you along a path that will avoid problems, but our experience is that they can come from unexpected directions, and that is when the ‘one to one’ specialist response really comes into its own.

 

Pricing

 Our fees are based on £2 per pupil per annum plus VAT, with a cap of £2000 per School.  Where the School is part of a Trust or Federation and the total pupil number is less than 2500 then the per capita charge is applied.  Over 2500 there is a further cap of £5000, regardless of the number of schools or pupils within the governing structure.

Basis

For our fee we seek to provide an all in service somewhat akin to an insurance policy.  Thus for those Schools that find they need considerable support there is never any extra charge.  We take the view that in dealing with issues we are continuously learning, thus able to extend experience gained to all our customers.  To that end we publish frequent “updates” containing relevant advice and comment gleaned over the period, not least to provide an active contribution to those who have not had issues as a return on their investment with us.  These go beyond the strict basis of the Data Protection Act 2018 and will embrace aspects of both technology and cyber security – aiming to deliver “privacy by design and default.”  We actively encourage questions because again we benefit from an understanding of any issues that you might have, and if we do not know the answer we can also advance our knowledge by finding (and sharing) the answer.  On a personal note we value the engagement with you and are always prepared to visit if invited, for audit or training purposes.  The discovery of Zoom (or its options) has also been a bonus.

Services

Beyond that the services we provide for within our contract are as follows:-

1                 To satisfy the regulatory requirement for the organisation to have a nominated DPO

2                 To deal with all matters arising from that role, especially ensuring that the privacy of the data of natural persons is being protected

3                 To update clients with any change in interpretation, guidance or case law and ensuring their subsequent ongoing compliance

4                 To promote and maintain the currency of a plan to deal with any breach situation

5                 To be specifically available to deal with any breach concerns, and to ensure that any arising problems are managed

6                 To counsel on the impact of any changes in IT, whether that be programs, scope, or to meet an evolving threat

7                 To be continuously aware of any training needs and if identified consult with the Organisation for it to be resolved

8                 To assist clients to answer and manage subject access requests

9                 To assist in the provision of any arising solutions, such as encryption

10              To advise in any circumstance where data should be removed

11              To make available an email response service as a problem resolver

12              To be aware of risks to the client, particularly from a Cloud or Processor source

13              To provide a reporting conduit to the ICO in the event of a breach

14              To manage discussions with the ICO on behalf of their client

15              To provide an interface with data subjects regarding their rights

16              To support customers with draft policy templates for consideration

17              To provide support regarding encryption, tokenisation or pseudonymisation as required

18              To provide model standards for backup and confirm adoption

19              To offer advice where applicable on penetration testing and hacking risk

20              The formal basis of our service is that we act as a DPO as required by GDPR* or DPA, providing a reporting and liaison link with the Information Commissioners Office as required.

*Please note that where a School has European Pupils, then the original GDPR 2016 still applies.

Further information

For more details and to arrange further discussion, please email us at admin@satswana.com

Satswana Pricing and Services for Schools.