Information Governance Policy Development

Legally Trained Consultants

Expert consultants in policies & procedures

Policies and procedures are the backbone of your organisational requirements for good information governance practices. Having good internal practices is one thing, but having them clearly stated and followed so that they can be understood by all staff is another altogether.

It can be daunting to know what policies to draft or what practices you should be following. You may need to draft policies from scratch, or revise already drafted policies.

At IGS, we specialise in drafting data protection and information governance policy documentation. We can draft policies from scratch, or we can review and revise current policies you already have. We work with you to ensure that the policies are not only as they are on paper, but they dictate real practices that people in your organisation follow, and help you mobilise those policies so that they are followed.

We are flexible, professional and affordable. If you want assistance with any of your policy documentation, get in touch with us and one of our consultants would be delighted to speak with you to see how we can help.

Project showcase

We were commissioned to undertake a policy and process review for a medium sized organisation. On the request of their senior leadership team, we were tasked with improving their IG compliance framework by enhancing and drafting new data protection policies and procedures to allow them to have a better IG framework.

We started by engaging with key stakeholders to get a copy of all available policies and procedures they currently had in place. After which, we mapped out where we felt the gaps were and presenting our proposal for change to the service lead. On a tight schedule, and in close collaboration with the service lead, we drafted an entire suite of IG policies and procedures and incorporated feedback after an initial draft.

When we were done, we were asked to deliver training to the whole organisation to explain the new policies and procedures. The organisation were so happy with our work, that we now provide them with regular ongoing support in all areas of data protection and information governance, including being their outsourced Data Protection Officer.

We consult and draft a huge variety of documentation. A non-exhaustive list of policies we typically consult on includes:

  • Freedom of Information Policies/Standard Operating Procedures;
  • Data Subject Access Requests Policies/Standard Operating Procedures;
  • Information Governance Policies;
  • Data Protection Policies;
  • Information Security Policies;
  • Information Management Policies;
  • Information Quality Policies;
  • Acceptable Use Policies;
  • Clear Desk Policies;
  • Privacy Policies;
  • Data Security Incident/Breach Policies;
  • Record of Processing Activities;
  • Information Asset Registers;
  • De-identification/pseudonymisation policies;
  • Individual Rights Request Policies;
  • Opt-Out and National Data Opt-Out Policies
  • And many more…

We are flexible, professional and affordable. If you want assistance with any of your policy documentation, get in touch with us and one of our consultants would be delighted to speak with you to see how we can help.

Get in touch with us today to book a free 30 minute consultation and find out how we can support you achieve compliance.

Legally Trained Consultants

What policies do we usually work on?

We are here to assist:

Our Services

We provide a full data protection and information governance consultancy service to all our clients who engage with us. We provide flexible packages and services to make sure that you only pay for what you need, so you aren’t paying for unnecessary services. Whatever you and your organisation need, we are here to help.

Data Protection Consultancy

Data Protection Officer (DPO) Services

Data Protection Impact Assessment (DPIA)

External Independent Reviews

Data Protection Training

Fair Processing Materials

Data Protection Audit

Information Governance Policy Development

Data Security and Protection Toolkit (DSPT)

Record of Processing Activities (ROPA) & Information Asset Registers (IAR)

Packaged Services

Other Services

Incident Management

Send Us A Message