Who am I?
My name is Tim Turner; I live in Manchester, but I travel across the UK (and further afield if that’s where you are) to help people with information law. I have worked on Data Protection, FOI and Information Rights law since 2001. I started at the Information Commissioner’s Office as a Policy Manager on FOI issues, just after the 2000 FOI Act was passed. I worked with central and local government, wrote guidance and policies for the Commissioner and was a regular speaker at conferences and events. I was DP & FOI Officer for two top-rated councils as well an Information Governance Manager for an NHS organisation.
I have a Masters of Law in Information Rights from Northumbria University, the ISEB Certificates in Data Protection and Freedom of Information, a Post-Graduate Diploma in Information and Library Studies, and a B.A. (Hons) in English from King’s College (University of London). The most important thing I have is practical experience – I have searched for data to complete a SAR, made decisions about what to disclose to the police, dealt with the ICO during a security incident, and as a consultant, I’ve helped many organisations to do this even after I stopped being a DPO day-to-day.
Why is it called 2040 Training?
A friend suggested that the company should have been called Turner Information Training Services – an idea with an obvious flaw. Another possibility was to call it 3T (Tim Turner Training), but that seemed too close to what was at the time a well-known technology magazine (T3). Getting sued for trademark infringement didn’t seem like an illustrious beginning. And so the name 2040 was born on a walk up a hill at Wasdale Head in the Lake District.
20 is the 20 working days that the FOI Act gives you to respond; 40 is the 40 days that the Data Protection Act gives you to respond to a subject access request. In this field, these are two crucial numbers. The 40 will be made redundant by the GDPR. I do not care about this. The McDonald brothers sold their burger company but nobody asks for a Big Kroc. 2040 is evidence of my longevity, and I’m happy to have a old-fashioned name.
Why use 2040 Training?
The Data Protection sector is full of scaremongering GDPR-obsessed cowboys. Many of them are refugees from information security jumping on a bandwagon that is rolling merrily towards the GDPR live date in May 2018. I am not one of these people. I am a trainer and consultant who is here to help you understand the real challenges of Data Protection and other information laws, not to drown you in hype and sell you something you don’t need.
I am not a Certified GDPR Professional or Practitioner, because nobody is. In GDPR, Certification applies to processing of data, not individuals. Nobody can make you fully compliant or ‘GDPR ready’ because Data Protection is a constantly evolving area, continually updated by case-law, enforcement and guidance. What I offer is honest, practical, down-to-earth advice and training to ensure that you stay on the right side of the law while achieving your business objectives. I have no magic solutions, no silver bullets – just years of experience at communicating a complex and ambiguous subject in an accessible and understandable way.
I have full professional indemnity and public liability insurance, and references are available on request.