We (Information Governance Services) are a small consultancy firm made up of subject matter experts in all things data protection and information governance. We provide specialist advice and a variety of services to our clients to ensure that they are handling their data in-line with data protection legislation. We go above and beyond, ensuring that our clients act in accordance with best industry practices and that their handling of data is as ethical as possible. We pride ourselves on always going the extra mile for each and every one of our clients, and see our clients as an extension of ourselves.
What sets us apart from our competitors is our legal expertise. All members of our diverse team are legally trained in a variety of areas, ranging from qualified barristers, to trained lawyers and law graduates.
We work with a variety of organisation sizes and industries. Our clients include those in the public sector, local authorities, charities, SMEs as well as national and multi-national organisations. We provide data protection consultancy across all sectors, although we specialize in the healthcare sector.
We are a close-knit and personable team. It is important for us to see our clients as partners in everything we do, and we try to be an asset to everyone we work with. We love working with new people, and offer a free 30 minute consultation with all new clients so that we can understand what is required and how we can help you.
Our prices vary depending on what service we are providing. Depending on what services you are looking for, we have fixed-price packages that you can find on our Packaged Services page. We can also provide you with a proposal and a bespoke quotation for your specific project or provide our hourly and day rates upon request.
We offer several packages depending on your organisation’s size, the services you need and the number of consultancy hours you would like from us. You can find these packages on our Packaged Services page.
If you reach your allocated monthly package, we won’t simply stop providing you services for that month. If more time is required to deliver the work over your monthly package limit, we won’t charge you this additional cost (providing the additional time isn’t disproportionate to your package). We see our clients as partners and operate via trust and give and take.
However, if a specific project arises, in addition to your usual workload, it may be necessary to allocate specific resources to it. In that case, we will provide you with a dedicated proposal and quotation for it.
Our packages are usually calculated to be on a contract period of 1 year. However, we fully understand that some months may vary in the amount of support required. If you don’t use your full package limit during a particular month, you may allocate this time to another month when you will require more of our assistance.
Yes! We offer all prospective clients a free, 30-minute consultation. During this meeting, you will be able to explain us your situation and what you expect from us and what support you require. We may be able to provide you with an idea of the services and costs that you require, or we may need further information. After we are provided with this information, we will provide you with a bespoke proposal and quotation or suggest a suitable training package.
Yes, we offer different types of training, including staff-wide data protection training, board members or senior staff with data protection responsibility training and bespoke training of identified areas of support and need. You can consult our Training page to know more about our training.
We provide regular updates depending on the timescale of each project or query in issue. In most cases, you will hear from us at least every week and in any time at each milestone of the ongoing work. Where we provide you with IG Helpdesk Support, a dedicated member of staff will be available between 9 to 5 so that routine support can always be provided between those hours by phone and email.
Our proposals and quotations are bespoke and calculated on a case-by-case basis for each project and client. We get an understanding of what the project is, the complexity and outputs required, then we will estimate the number time needed to be spent by our team to deliver the work for you, taking into account time spent by junior consultants, consultants and leads to achieve the determined goals.
No, in most cases we are able to conduct our work after a disclosure stage where we will require you to provide us with some documentation. In the very occasional cases where we will need to be granted access, we will ensure that this is done with the appropriate role-based access controls and security measures in place.
In most cases, we are able to audit and assess your systems, projects and policies remotely. We are able to audit on your premises in the even that it is required, such as if it involves physical documentation which cannot be uploaded electronically.
Yes, we can assist with data breaches, including with investigations, reporting and analysis. To know more about the services we can provide, you can consult our Other Services page.
Yes, we can assist you with both freedom of information (FOI) and subject access requests (SAR) as well as FOI and SAR reviews. To know more about these services, you can consult our Other Services page.