Data protection: Wave Leisure Trust

Wave Leisure Trust Ltd is a charity and social Enterprise running 10 leisure centres across the South of England with a purpose of inspiring active lifestyles and a vision to be at the heart of the improvement of health and wellbeing within the Community.




  • To ensure Wave is compliant with GDPR well before 25th May 2018
  • A data protection officer will continue to work a few days a month after April 2018
  • All data-handling practices have been reviewed, such as the nature of the data recorded on member and staff databases

Project Need

From May 25th 2018, organisations will be obliged to comply with the General Data Protection Regulation (GDPR). There is now a risk of more severe financial penalties for data breaches than the existing Data Protection Act.

Eastside Primetimers were already working with Wave on impact assessment, when GDPR was identified as an additional need. Wave wished to ensure compliance and ensure their members and employees are protected under the new regulation, and avoid a potentially crippling fine for a data breach. Wave’s transition to compliance required assistance from an independent outsider with a critical eye and a comprehensive knowledge of GDPR.


With expertise and experience in this area, Eastside Primetimers consultant Michael Griffin has guided Wave’s progression to GDPR compliance in several steps:


  • An audit was conducted to examine Wave’s current processes and procedures with regard to data protection
  • In doing so, this process also beneficially highlighted possible areas for improvement not necessarily related to GDPR, and these findings will be used to make the organisation more efficient for the future
  • A detailed project plan outlined procedures for a swift transition to GDPR compliance
  • Regular meetings are being run to ensure measures are being implemented effectively. This project aims to finish at the end of March/April 2018, well before GDPR becomes enforceable
  • The need for a data protection officer was identified

Download the PDF


How can we help you?

If you would like to learn more about this project or talk to us about how we could help your organisation, contact us now on 020 7250 8334 or at to arrange a conversation with one of our specialists.

Providence Row“We are a homelessness charity in East London and we recently brought in Eastside Primetimers consultant Mike Griffin to support us to update our data protection policies and procedures so they are in line with the new regulation (GDPR). We have greatly appreciated Mike’s knowledge and expertise on the subject, but also his ability to articulate recommendations in a clear, concise way. He takes the time to understand the organisation and provides very practical and pragmatic advice. I wouldn’t hesitate to recommend Eastside Primetimers to any other organisation looking for data protection consultancy” Nicola Robson, Marketing Manager
Wave Leisure Trust“We want to be the best we can be and lead the way on key aspects within our sector, such as GDPR compliance. The Wave Team is positive about the required changes we have identified for compliance and by utilising the professional GDPR services of Eastside Primetimers, I have no doubt that we will successfully reach our objectives” Duncan Kerr, CEO
Wave Leisure Trust“I would have no hesitation in recommending Eastside Primetimers GDPR consultant Mike Griffin, he is clearly very knowledgeable and experienced within the field of GDPR and has eased our journey towards compliance” Duncan Kerr, CEO


Eastside Primetimers