Data Protection Officer

What is this?

Organisations from May 2018 are required to appoint a Data Protection Officer (DPO) or have access to a service that provides this function.

Where we provide this service , we incorporate a practical approach to ensure that staff are correctly supported BUT there is always a high degree of objectivity.  The DPO is legally required to make decisions that comply with data protection legislation and that may at times mean they provide a decision or answer that an organisation may not “like”.

We acknowledge that changes to data protection legislation may remove the need for this role and we continue to “watch this space” as things evolve.

@01/24, any change may be based on whether there is an election and change of government.

Our primary function is to:

  • Ensure that an organisation meets its data protection obligations
  • Review data sharing activities
  • Undertake and review Data Protection Impact Assessments (DPIA)
  • Act as the first point of contact for the Information Commissioner
  • Act as the first point of contact for data subjects

GRG is a member of NADPO

GRG provides a DPO Service to:

  • Exemplar Health Care (all the care homes within the group)
  • Fetal Medicine Foundation/Fetal Medicine Center
  • Kings Fertility Ltd
  • The Stoneygate Eye Hospital
  • NHS organisations

We also provide support to other DPO Services as part of our extensive network.

GR Governance & Consultancy Services is a trading name of D-Stress Consultancy Ltd.
Registered Office c/o Bradley Chilvers & Co (Accountants) Ltd, 109 Knowles Hill, Rolleston on Dove, Burton on Trent, Staffs, DE13 9DZ.

Company Number 05418291. Information Commissioner Z1628441. VAT-registered.