Why I Do This Work
I'm Gareth Eynon, founder of Tru-Digital Protection. Before I explain my approach to data protection, you should know why it matters to me personally.
I'm a father of four and have been married for over 20 years. Two of my children have additional needs—my second child is dyslexic and required significant educational support, whilst my third child has high-functioning ASD with PDA tendencies. I've navigated the EHCP process firsthand, working alongside schools to secure the right provision.
That experience taught me something critical: data protection isn't an academic exercise. It's about real children, real families, and real consequences.
The Gap Between Policy and Practice
When you're fighting for your child's educational rights, you become acutely aware of how data flows through school systems. You see which staff truly understand confidentiality and which treat sensitive information casually. You notice when safeguarding records are handled with care and when they're not.
You also see the difference between schools that treat GDPR as a bureaucratic burden and those that understand it as a framework for protecting vulnerable children.
The SENCO and DSL at my son's secondary school have been exceptional—not because they're GDPR experts, but because they understand that behind every data protection principle is a child who deserves dignity, confidentiality, and appropriate support.
Supporting School Leaders Through Difficult Situations
A significant part of my work involves supporting headteachers and their staff when dealing with challenging parent interactions. Whilst most parents are reasonable and want the best for their children, some can be vexatious or even spiteful in their approach.
I've helped school leaders to navigate situations where Subject Access Requests are weaponised to intimidate staff, where complaints are used to settle personal grievances rather than to address genuine concerns, and where the boundaries of reasonable communication are repeatedly crossed.
This isn't about dismissing parents' legitimate concerns—far from it. It's about recognising that headteachers and staff deserve protection too. They're trying to do their best for hundreds of children whilst managing impossible workloads, and sometimes they face parents who make that work unnecessarily difficult or even hostile.
Understanding both sides matters.
I know what it's like to be the parent who feels unheard and frustrated. But I also know what it's like to be the professional trying to balance competing needs, limited resources, and regulatory requirements—all whilst facing unreasonable demands or personal attacks.
That dual perspective allows me to provide practical, defensible guidance to schools when relationships break down, helping them maintain professional boundaries whilst still meeting their legal obligations.
Pragmatic Data Protection
This lived experience—as both a parent and a school leader—shapes everything about how Tru-Digital Protection operates.
I don't approach data protection as a compliance checklist. I approach it as a former school business manager who's managed £2.5m+ budgets, processed hundreds of SARs, investigated data breaches, and liaised with the ICO—all whilst understanding the operational pressures schools face daily.
But more importantly, I approach it as someone who's sat on both sides of the table: as a parent discussing my child's most sensitive information, and as a professional supporting staff who are doing their best under difficult circumstances.
That changes your perspective.
You understand why parents sometimes submit Subject Access Requests that seem excessive—they're often trying to understand what's happening with their child when communication has broken down.
You understand why staff sometimes struggle with redaction decisions—they want to be transparent but also protect other children's privacy and their own professional wellbeing.
You understand why diversity and inclusion matter in data protection—because children with SEND, children from marginalised backgrounds, and children with complex family situations deserve policies that reflect their reality, not generic templates copied from the internet.
Real-World Complexity
Data protection in education is messy. Children don't fit into neat categories. Families are complex. Safeguarding concerns blur boundaries. Schools are under-resourced and overstretched.
Rigid, box-ticking compliance doesn't work in this environment.
What works is pragmatic guidance that acknowledges complexity, respects professional judgment, and ultimately centres on what's best for children—whilst also protecting the staff who serve them.
That's why our policies are written in plain language at Grade 8-10 readability—because parents shouldn't need a law degree to understand how their child's data is used.
That's why we use accessible typography like Lexend Deca—because if 20% of the population experiences reading difficulties, our policies should account for that.
That's why I spend time explaining the nuance behind exemptions in Subject Access Requests—because sometimes the right answer isn't black and white, and schools need support in making defensible decisions, especially when facing hostile or vexatious requests.
Beyond Schools
I've also supported charities including Action for Children through fundraising work. That reinforced my understanding that vulnerable children and families interact with multiple systems—education, social care, health, voluntary sector—and data protection frameworks need to support that complexity, not obstruct it.
30 Years of Leadership
My professional background spans 30 years across education, technology, and business management. I've been a CEO, a Digital Director, a Business Manager, and now a Data Protection Officer for many educational institutions.
But the credential that matters most is this: I understand what you're protecting, because I'm protecting it for my own children too. And I understand the pressures you face, because I've faced them myself.That's not sentimentality. It's accountability.
Our Service in Numbers
Schools and Trusts trust Tru-Digital Protection with their data protection:
- Single nurseries to 50-school Multi-Academy Trusts
- Primary, secondary, special schools, and independent schools
- Across England and Wales
- From 60 pupils to 1,800+ pupils
We support:
- Management Information Systems (SIMS, Arbor, Bromcom, ScholarPack)
- Safeguarding platforms (CPOMS, My Concern, Safeguard)
- Cloud systems (Google Workspace, Microsoft 365)
- Communication tools (ParentMail, SchoolComms)
Let's Talk
If you want a DPO who'll send you generic policy templates and invoice you annually, we're probably not the right fit.
If you want a partner who understands the lived reality of schools, the complexity of modern families, and the importance of pragmatic data protection that actually works—let's talk.
Gareth Eynon
Founder, Tru-Digital Protection
☎️ 0204 621 2983
Get Started → | View Our Services → | See Pricing →