Tru-Data Protection
← Back to About

Founder Story

Why this work is personal

Data protection became personal for me the day I sat across the table from my child's SENCO, discussing an EHCP application.

I’ve been on your side of the table as a School Business Manager, managing £2.5m budgets and navigating Ofsted inspections.

But I’ve also been on the other side—as a parent who understands exactly why some Subject Access Requests feel excessive, why safeguarding data handling matters so deeply, and why “just following GDPR” isn’t enough when you’re talking about real children with complex needs.

That dual perspective changes everything.

What that dual perspective changes

  • You see why a parent might submit what looks like a sprawling SAR—often they’re trying to understand what’s happening with their child when communication has broken down.
  • You understand why staff struggle with redaction decisions—they genuinely want transparency but also need to protect other children’s privacy.
  • You know why inclusion isn’t a buzzword in data protection—because children with SEND, children from minoritised backgrounds, and children with complex family situations deserve policies that reflect their reality.

Not generic templates copied from the internet.

Why we write policies differently

This is why our policies are written at Grade 8–10 readability. Why we use accessible typography like Lexend Deca. Why I spend time explaining the nuance behind SAR exemptions rather than sending you a flowchart and a good luck message.

Data protection in education is messy. Children don’t fit into neat categories. Families are complex. Safeguarding concerns blur boundaries. Schools are under-resourced and overstretched.

Rigid, box-ticking compliance doesn’t work in this environment.

What works is pragmatic guidance that acknowledges complexity, respects professional judgment, and ultimately centres on what’s best for children.

The credential that matters most

I understand what you’re protecting, because I’m protecting it for my own family too.

That’s not sentimentality. It’s accountability.

If you want a DPO who’ll send you generic policy templates and invoice you annually, we’re probably not the right fit.

If you want a partner who understands the lived reality of schools, the complexity of modern families, and the importance of pragmatic data protection that actually works—let’s talk.