(8)(2)_1000.png "Newsflash - WisePay")
Update - WisePay
We are aware that many schools have been affected by the large data breach that WisePay suffered between 2nd – 5th October. From the communications that many of you have received and shared with us, WisePay have requested schools to help determine who has been affected by the breach and to assist WisePay to reach out to those affected parents.
We have spoken to WisePay about this approach as we feel that, where possible, they should be the organisation to contact those affected and remedy the data breach. Whilst schools can of course assist WisePay, on occasion it appears the level of support they have requested was excessive.
Whilst we have had communication with WisePay their position remains that they are unable to contact those individuals affected. We have queried this position and given some suggestions to assist them in remedying the breach but have not received a satisfactory response.
In the meantime we thought it best just to give some practical guidance to assist those schools affected: -
- WisePay (and not the school) are ultimately responsible for the data breach. Whilst schools can assist them (as they have requested), if this would involve a disproportionate amount of time, you are well within your rights to refuse to assist further.
- Should you refuse to assist, I would suggest communicating this to WisePay. We can assist with this communication.
- You do not need to contact the ICO directly. WisePay have already contacted the ICO and you do not have a separate obligation to do so.
- If you have any queries/questions about this data breach do contact us in the first instance and we will do our best to assist (and where necessary contact WisePay on the school’s behalf).
Related content
.png)
With Ofsted dropping 'best-fit' judgements, governance faces sharper scrutiny. Discover what inspectors look for and how boards can confidently prepare.
.png)
This blog is based on Judicium’s Facilities ‘Sofa Session’ from the 14th May 2026, with our resident expert Joanne Fisher and Neil Merry. This blog details best practices on how to manage the expectations of premises staff and key training to support with the role.
(1).png)
Learn the do’s and don’ts of processing biometric data in schools. Discover how to manage privacy risks, handle ICO audits, and ensure school compliance.
(4)(2)(1)(2).png)
The ERA is introducing increased worker protections and in this article we will focus on the forthcoming changes to unfair dismissal and how to prepare. From January 2027, the qualifying period for ordinary unfair dismissal claims will reduce from two years to six months. At the same time the cap on the unfair dismissal compensatory award will be abolished.
Everything school leaders need to know about the transition to mandatory allergy safety standards under Benedict’s Law.
Because conflict in schools rarely begins with one big dramatic moment, and is far more likely to grow slowly through strained conversations, crossed wires, unspoken frustration and small disagreements that never quite get repaired, it can be surprisingly easy for a situation to become serious before anyone fully realises quite how far it’s gone.
Sofa Sessions | Governance and Clerking