Info Gov

Events

  • The New Data (Use and Access) Act - Act Now

    The New Data (Use and Access) Act - Act Now

    16 Jun 2026 10:00 am
    Online (Live)
    From £249 plus VAT

    This workshop will help you prepare for the UK's new data protection regime, ensuring you are ready to meet the law's requirements and helping you leverage the changes intended to simplify compliance.

  • How to Handle a Subject Access Request - Act Now

    How to Handle a Subject Access Request - Act Now

    17 Jun 2026 10:00 am
    Online (Live)
    From £449 plus VAT

    During this full day workshop we will take you through each stage and requirement of a Subject Access Request. From the fundamentals of what the right is and requires through to an in-depth look at exemptions, delegates will come away with a strong set of skills and knowledge on how to handle an SAR, where some of the challenges might be and where further knowledge and resources can be gained.

  • AI Governance Professional (AIGP) - The Training Centre

    AI Governance Professional (AIGP) - The Training Centre

    18 Jun 2026
    Online (Live)
    £1,550.00

    Aligned with the AIGP certification program, AI Governance ProfessionalTraining is for professionals tasked with implementing AI governance and risk management in their organizations. It provides baseline knowledge and strategies for responding to complex risks associated with the evolving AI landscape.

  • RIPA and Covert Surveillance - Act Now

    RIPA and Covert Surveillance - Act Now

    19 Jun 2026 10:00 am
    Online (Live)
    From £449 plus VAT

    Part 2 of the Regulation of Investigatory Powers Act 2000 (RIPA) regulates designated public authorities in the way they conduct covert surveillance.

    This workshop provides a thorough examination of RIPA requirements, processes and documentation to ensure compliance.

  • Certified Information Privacy Professional (CIPP/E) - The Training Centre

    Certified Information Privacy Professional (CIPP/E) - The Training Centre

    22 Jun 2026
    Online (Live)
    £1,395.00
  • The General Data Protection Regulation - Act Now

    The General Data Protection Regulation - Act Now

    22 Jun 2026 10:00 am
    Online (Live)
    From £449 plus VAT

    This interactive workshop will examine all the main provisions of the UK GDPR in detail as well as related legislation such as the Data Protection Act 2018. It will help you understand the practical steps which need to be implemented to ensure GDPR compliance. It will enable you to design a compliance action plan that meets regulatory requirements and builds customers' confidence in your organisation.

Events

Cyber Security for DPOs - Act Now Cyber Security for DPOs - Act Now
09 Sep 2026 10:00 am
Security
Online (Live)
Price: From £449 plus VAT
Cyber Security for DPOs - Act Now Cyber Security for DPOs - Act Now
11 Dec 2026 10:00 am
Security
Online (Live)
Price: From £449 plus VAT

Second health trust issues notification after 2024 Synnovis ransomware attack

Mid and South Essex NHS Foundation Trust (MSE) has notified patients that personal data held by the trust was compromised in the June 2024 ransomware attack on Synnovis - a pathology services provider- in which criminals unlawfully accessed Synnovis's internal systems and subsequently published stolen files on online forums associated with data theft.

The trust, which operates Chelmsford’s Broomfield hospital as well as Basildon and Southend hospitals, said the breach involved 2,380 records and that it would contact those potentially affected. It advised that, while there was no evidence that this information had been misused, potential victims should be alert to unexpected communications requesting personal information, to avoid clicking on links or opening attachments from unknown sources, and to be cautious of unsolicited calls, emails or texts referencing their details.

The cyber attack on Synnovis - a pathology partnership between Guy’s and St Thomas’ NHS Foundation Trust, King’s College Hospitals NHS Trust and SYNLAB – took place in June 2024 and impacted almost all Synnovis IT systems. The impact was greatest in South-East London, within Synnovis’ partner trusts and their local boroughs, causing delays to over 11,000 outpatient and elective procedure appointments. While appointment cancellations were confined to South-East London, data stolen in the attack may potentially relate to any of Synnovis’ service users, including some NHS hospitals, GP practices and clinics across England.

The organisation completed a forensic investigation of the data stolen from its systems in November 2025 and had notified the organisations whose data was affected by the end of that month. The stolen data, it said, was unstructured, incomplete and fragmented, requiring the use of highly specialised platforms and bespoke processes to piece together, which meant that the investigation took more than a year to complete.

The information potentially includes names, dates of birth, patient numbers, NHS numbers, postcodes and test results. The Trust said that the data's fragmented and incomplete nature significantly limits how easily it could be interpreted or linked to individuals.

Synnovis has obtained a court injunction prohibiting third parties from accessing, sharing or distributing the stolen material, and continues to monitor the online forums on which it was published.

Further information on the Synnovis cyber incident is available at www.england.nhs.uk/synnovis-cyber-incident/.

Also in this section

May 13, 2026

NCSC warns organisations to prepare for a ‘vulnerability patch wave’

Organisations should prepare for a “forced correction” across their technology estates because of an impending “vulnerability patch wave” driven by decades of accumulated technical debt and the accelerating exploitation capabilities of AI‑enabled threat actors, the National Cyber Security Centre (NCSC) has warned.

Latest Jobs

InfoGov Masthead Newsletter 800