Skip to the content


On 25th May 2018, European data protection legislation was updated, the first time in 20 years. GDPR and implementation with the new DPA replaces the 1995 EU Data Protection Directive delivering a harmonised approach to data protection across the EU. Individuals “subject rights” have been significantly strengthened and better described.

IPSA is committed to privacy good practice and security with GDPR compliance. The policies and documents below provide assurance and evidence of this commitment.

Information Rights Freedom of Information and DPA Policy

Website Privacy Policy

Privacy Notice – Human Resources

Information Governance Framework

Data Breach Policy

IPSA are registered (Z2136128) with the Information Commissioner’s Office.

The Data Protection Officer can assist you with privacy questions, rights and reviews. 

Email: OR

Post: IPSA Data Protection, 4th Floor, 30 Millbank, London SW1P 4DU

If IPSA has not been able to help you with your data protection rights, you have the right to complain to the Information Commissioner. ICO helpline 0303 123 1113 or, for more options:

IPSA is a public authority defined under the Freedom of Information Act 2000