Newsflash - WisePay

Posted  22nd October 2020

Update - WisePay

We are aware that many schools have been affected by the large data breach that WisePay suffered between 2nd – 5th October. From the communications that many of you have received and shared with us, WisePay have requested schools to help determine who has been affected by the breach and to assist WisePay to reach out to those affected parents.

We have spoken to WisePay about this approach as we feel that, where possible, they should be the organisation to contact those affected and remedy the data breach. Whilst schools can of course assist WisePay, on occasion it appears the level of support they have requested was excessive.

Whilst we have had communication with WisePay their position remains that they are unable to contact those individuals affected. We have queried this position and given some suggestions to assist them in remedying the breach but have not received a satisfactory response.

In the meantime we thought it best just to give some practical guidance to assist those schools affected: -

  • WisePay (and not the school) are ultimately responsible for the data breach. Whilst schools can assist them (as they have requested), if this would involve a disproportionate amount of time, you are well within your rights to refuse to assist further.
  • Should you refuse to assist, I would suggest communicating this to WisePay. We can assist with this communication.
  • You do not need to contact the ICO directly. WisePay have already contacted the ICO and you do not have a separate obligation to do so.
  • If you have any queries/questions about this data breach do contact us in the first instance and we will do our best to assist (and where necessary contact WisePay on the school’s behalf).

The Summer SAR Surge: AI-Generated Requests, FOIs and Staying Compliant When School's Out
  July 08 2026

Discover how to manage the summer SAR surge, handle AI-generated requests, and remain compliant with ICO guidelines during school holiday closures.

Read more

How Schools and Trusts Must Align Filtering and Monitoring with Data Protection
  July 03 2026

Filtering and monitoring are now explicit data protection expectations for schools. Discover how to align your safeguarding systems with updated DfE compliance standards, manage data retention, and implement cross-functional governance across your trust.

Read more

Safeguarding Under the Spotlight What the new Ofsted framework is telling us
  July 01 2026

Under the new framework, Ofsted safeguarding has shifted from checklist compliance to a live, embedded culture. Discover what inspectors are looking for on the ground and what it takes to secure a "met" judgement.

Read more

The Governance MOT: Why Every Board Needs a Check-Up
  June 24 2026

An in-depth look at External Reviews of Governance (ERGs) across maintained schools and academy trusts, exploring criteria for independent reviewers, common compliance themes, and practical next steps for boards.

Read more

Summer Shutdown Risk: What MATs and Schools Often Overlook
  June 17 2026

Quieter campuses introduce unmonitored compliance gaps, complex safeguarding crossovers, and reduced leadership oversight. Learn how to bridge these operational gaps to ensure a seamless transition into the new term.

Read more

KCSIE 2026: What’s New, What Matters, and What This Means for Schools
  June 03 2026

Prepare your school or MAT for upcoming statutory updates. Discover key shifts across online safety, mental health, and more.

Read more