As our Head of Data Protection Consultancy, Sandy brings valuable knowledge and experience to DPAS, having specialised in data protection since 2011.

Sandy has a hands-on approach in leading our clients to comply with the GDPR and data protection laws. She works with other members of our team to introduce data protection principles and operating practices across multiple organisations.

As a qualified lawyer and data protection practitioner, Sandy has worked with a wide range of clients, from small private organisations to large public authorities, advising them on a variety of data protection matters, from straight forward subject access requests to comprehensive and complex audits.

CILEX - 1996 - Admitted as a Fellow of the Chartered Institute of Legal Executives


BCS/ISEB - 2011 – ISEB (BCS) Data Protection Practitioner Certificate


Brockenhurst College - 1 O Level, 1 G.C.S.E,   2 A levels


The Arnewood School - 5 O Levels, 3 C.S.Es


Relevant Training Courses Various Data Protection Updates (2010 to 2020), Subject Access Requests, ICO Data Protection Conference, How to Conduct a Data Protection Audit, Data Protection Essential Knowledge Level 2



Key Achievements

A fully qualified lawyer and experienced Data Protection Practitioner, holding the ISEB Practitioner Certificate in Data Protection and having almost 10 years’ experience in this field. Excellent practical application and working knowledge of the GDPR, the DPA 2018, the PECR and the ICO and EDPB Guidance.

 Experience of assisting a wide ranging client base with data protection compliance by designing and delivering training, conducting data protection impact assessments, audits and gap analyses, preparing legitimate interests assessments, advising on all areas of data protection, including data subject requests, and drafting documentation such as reports, privacy notices, policies and contracts.