Stay Compliant

Stay Compliant is the training segment of Baker Lomax Services Limited (BLS) and delivers an array of tailored training courses.

The training was outstanding, it was engaging and relevant to ourselves as a company. We left feeling much more reassured about our responsibilities and requirements – thank you!

- Bespoke Training

Introduction to Data Protection (3 Hours)
Data Protection Overview Training (1 Day)

These courses are designed for delegates who require a basic understanding of the Data Protection Act and how it applies in practice, or an annual refresher to keep abreast of legislative changes and updates such as the General Data Protection Regulation (GDPR).

Currently the Information Commissioner’s Office has the ability to issue monetary penalties of up to £500k for an information security breach. Whilst this is a significant amount of money the consequential loss of reputation resulting from a fine can be more damaging to organisations. This interactive training helps you to understand your responsibilities and provides a variety of action plans and health checks to support you in compliance activities.  We also cover relevant procedures and policies for effective governance but also discuss physical security considerations such as out of hours access, secure kit disposal and CCTV.

More Details

Caldicott Guardian
Training

Our 1 day CPD accredited Caldicott Guardian training course is suitable for newly appointed or experienced Caldicott roles, including those who are required to support Caldicott Guardians. It meets the annual training requirements as specified in the Information Governance Toolkit (IG Toolkit which states “Organisations should ensure that Caldicott Guardians and Caldicott leads are offered effective training and support”).

The training also provides up to date advice and guidance in a constantly evolving role.

It is a practical, interactive course with detailed handouts. We cover a range of topics including:

  • Sharing information safely
  • The new 2016 Caldicott Guardian Manual
  • General Data Protection Regulation (GDPR) update
  • Case studies
  • Guidance for lawful and ethical processing of information
  • Mini Healthcheck to test your organisation’s compliance in key areas

More Details

Data Protection
Act 2018 (GDPR)

Are you aware that new Data Protection laws will be introduced from May 2018?

The EU Data Protection Act 2018 (GDPR) is a wide ranging overhaul of legal requirements which must be met by ANY business involved in handling personal data.

There is the potential for significant financial penalties for non-compliance – up to 20 million euros.

Small Businesses will not be exempt. You MUST comply if you regularly process certain categories of personal data, legally this includes collecting & storing as well as using personal data for any purpose.

Read our news about ‘how this will affect schools‘.

More Details

Information
Governance (IG)

Toolkit Compliance for Small Organisations: Including Care Homes, Dental Practices, Opticians, Pharmacists and GPs.

The IG Toolkit is an online system which allows organisations to assess themselves or be assessed against Information Governance policies and standards. It can often be difficult for small organisations to have the skills and capacity to understand what this means in practice for their organisation.

In response to requests from small organisations, we are currently developing and running some sector specific training for small organisations to be held either on your site or at one of our chosen locations. The training will help you understand your obligations under the IG Toolkit and how to comply with them.

Organisations covered by this toolkit can be found on this OFFICIAL SITE.

More Details

Subject Access Requests
– A Practical Guide

Any organisation holding information about a living individual must have appropriate arrangements in place to respond to request from individuals to gain access to their data within a set timeframe, currently 40 calendar days. However, there are exemptions which can be applied in order to withhold information. This is a complex area made easy by our experts.
This 4 hour course provides delegates with the information they need to establish an effective SAR handling process in their organisation and considers common scenarios that arise. Delegates consider a number of practical case studies, including email requests and their final redacted response.

More Details

Senior Information Risk Owner (SIRO) Training

Our one day CPD accredited SIRO training course is suitable for newly appointed or experienced SIROs, including those who are required to support SIROs and Caldicott Guardians. It meets the annual training requirements as specified in the Information Governance Toolkit (IG Toolkit) for annual SIRO training.

A SIRO should be an Executive or Senior Manager on the Board who is familiar with information risks and the organisation’s response to risk. The SIRO role is to lead and champion the organisation’s information risk policy, and provide written advice and assurance to the board regarding information risk.

It is a practical, interactive course with detailed handouts. We cover a range of topics including:

  • Sharing information safely and lawfully
  • Interaction between the SIRO, Caldicott Guardians and Information Asset Owners (IAOs)
  • General Data Protection Regulation (GDPR) update
  • Case studies
  • Mini Healthcheck to test your organisation’s compliance in key areas

More Details