Anti Bribery & Corruption Policy

Approved by: Nurture Education Management Team / Andrew Marr
Date of Issue: June 2026
Next Review: June 2027

1. Purpose of This Policy

Nurture Education is committed to conducting all business with the highest standards of integrity, honesty, and transparency. We operate a zero-tolerance approach to bribery, corruption, fraud, and unethical conduct in any form. This policy outlines our expectations, responsibilities, and procedures to ensure compliance with the Bribery Act 2010 and to protect the organisation, our staff, our clients, and the children we serve.

2. Scope

This policy applies to all individuals working for or on behalf of Nurture Education, including:
• Supply teachers
• Teaching assistants
• Office staff
• Agency workers
• Contractors
• Volunteers
• Trainees

It applies to all business activities, including recruitment, placement, procurement, marketing, and client engagement.

3. Our Commitment to Preventing Bribery & Corruption

Nurture Education commits to:
• Maintaining a zero-tolerance stance on bribery and corruption
• Ensuring all staff understand their responsibilities
• Preventing improper influence in recruitment, placement, or commercial decisions
• Ensuring transparency in all financial and operational processes
• Reporting and investigating any suspected breaches
• Taking disciplinary or legal action where necessary

4. What Constitutes Bribery or Corruption

Bribery and corruption may include:
• Offering, giving, receiving, or requesting anything of value to influence a decision
• Providing gifts, hospitality, or favours to secure business advantage
• Accepting incentives from candidates or suppliers
• Manipulating recruitment or placement decisions for personal gain
• Misuse of confidential information
• Facilitating payments or “kickbacks” These actions are strictly prohibited.

5. Prohibited Conduct

Staff must not:
• Offer or accept bribes
• Provide gifts or hospitality intended to influence decisions
• Request personal favours from candidates or clients
• Manipulate candidate placements for personal benefit
• Engage in fraudulent activity
• Conceal or fail to report suspected bribery

Any breach will result in disciplinary action and may lead to criminal prosecution.

6. Gifts & Hospitality

Reasonable, proportionate hospitality may be permitted only when:
• It is not intended to influence a decision
• It is transparent and declared
• It complies with Nurture Education’s internal approval process

All gifts or hospitality must be logged and approved by senior management.

7. Recruitment & Placement Integrity

To protect the integrity of our recruitment and placement processes:
• Consultants must follow the Candidate Vetting SOP
• No candidate may offer incentives to secure work
• No consultant may favour a candidate for personal gain
• All placements must be based on suitability, compliance, and school requirements

This ensures fairness, transparency, and safeguarding compliance.

8. Responsibilities of Staff

All staff must:
• Act honestly and ethically
• Declare any conflicts of interest
• Report concerns immediately
• Complete mandatory anti-bribery training
• Follow all internal procedures and approval processes

Managers must ensure staff understand and comply with this policy.


9. Reporting Concerns

Concerns about bribery or corruption can be reported through:
• The Designated Safeguarding Lead
• The Managing Director
• The Whistleblowing Procedure
• A trusted senior manager

All reports are taken seriously, investigated promptly, and handled confidentially.


10. Investigation & Consequences

Any suspected breach will be:
• Logged
• Investigated by senior management
• Escalated to external authorities where required
• Recorded for audit and compliance purposes
Consequences may include:
• Disciplinary action
• Termination of employment
• Removal from the candidate pool
• Reporting to the police or regulatory bodies

11. Training & Awareness

All staff complete annual anti-bribery and corruption training, which includes:
• Legal obligations under the Bribery Act 2010
• Recognising bribery risks
• Reporting procedures
• Conflicts of interest
• Ethical decision-making
Training is mandatory for consultants, compliance staff, and senior leaders.

12. Monitoring & Review

Nurture Education will:
• Review this policy annually
• Monitor compliance through audits
• Update procedures in line with legislation
• Ensure continuous improvement

Nurture Education – Data Breach & Incident Response Policy

Review Information

Item Data Breach and Incident policy Date 29.05.2026

Policy Review Date 29.05.2026

Next Review Date 29.06.2027

Contact Information

For questions relating to this policy or to report a data breach, contact: Nurture Education Data

Protection Lead: Andrew Marr Email: _ andrew@nurtureeducation.co.uk

Policy Statement

Nurture Education is committed to protecting the confidentiality, integrity, and availability of all

personal and sensitive information processed by the organisation.

The organisation recognises that data breaches and cyber incidents can have serious

consequences for candidates, employees, schools, children, and business operations. Nurture

Education is committed to responding promptly, effectively, and lawfully to any actual,

suspected, or attempted data breach or information security incident.

This policy sets out the procedures for identifying, reporting, managing, investigating, and

resolving data breaches and security incidents in accordance with:

• UK General Data Protection Regulation (UK GDPR)

• Data Protection Act 2018

• Information Commissioner’s Office (ICO) guidance

• Keeping Children Safe in Education (KCSIE) 2025

• UK cyber security best practice

Purpose

The purpose of this policy is to:

• Protect personal and sensitive data

• Minimise harm resulting from data breaches

• Ensure legal and regulatory compliance

• Establish clear reporting and escalation procedures

• Support rapid incident containment and recovery

• Maintain trust with schools, candidates, and stakeholders

• Reduce operational and safeguarding risks

Scope

This policy applies to:

• Employees

• Directors

• Consultants

• Agency workers

• Contractors

• Temporary staff

• Third-party service providers

The policy applies to all personal data processed by Nurture Education, including:

• Candidate records

• DBS and safeguarding information

• School and client data

• Employee records

• Payroll and financial information

• Electronic and paper records

• Email systems

• Cloud-based systems and CRM platforms

Definition of a Data Breach

A personal data breach means any security incident leading to the accidental or unlawful:

• Destruction

• Loss

• Alteration

• Unauthorised disclosure

• Unauthorised access

to personal data.

Examples include:

• Sending personal data to the wrong recipient

• Lost or stolen devices

• Unauthorised access to candidate files

• Cyber attacks or ransomware incidents

• Phishing attacks

• Accidental deletion of records

• DBS information disclosed improperly

• Password compromise

• Loss of paper records

• Unsecured email attachments

Roles and Responsibilities

Directors and Senior Management

Senior management are responsible for:

• Ensuring effective breach management procedures

• Allocating appropriate resources

• Reviewing serious incidents

• Ensuring regulatory compliance

• Supporting staff training and awareness

Data Protection Lead

The Data Protection Lead is responsible for:

• Coordinating breach investigations

• Assessing breach severity

• Determining reporting obligations

• Liaising with the ICO where required

• Maintaining breach records

• Leading post-incident reviews

Employees and Staff

All staff must:

• Report suspected breaches immediately

• Follow security procedures

• Protect confidential information

• Cooperate with investigations

• Complete required data protection training

Failure to report a known breach may result in disciplinary action.

Incident Reporting Procedure

Any employee or representative who becomes aware of a suspected or actual breach must

immediately report it to management or the Data Protection Lead.

Reports should include:

• Date and time of incident

• Nature of the breach

• Type of data involved

• Individuals affected

• How the breach occurred

• Immediate actions taken

Incidents must be reported immediately and without delay.

Immediate Response & Containment

Upon discovery of a breach, Nurture Education will take immediate steps to contain the

incident.

Actions may include:

• Recovering lost information

• Restricting system access

• Resetting passwords

• Isolating affected systems

• Disabling compromised accounts

• Contacting unintended recipients

• Suspending affected processes

• Engaging IT support or cyber specialists

Safeguarding risks relating to children or vulnerable individuals will be prioritised immediately.

Breach Risk Assessment

All incidents will be assessed to determine:

• The sensitivity of the information

• Number of individuals affected

• Risk of harm or identity theft

• Safeguarding implications

• Financial or reputational impact

• Likelihood of misuse

• Whether special category data is involved

• Whether DBS or safeguarding information is affected

The organisation will determine whether the breach poses a risk or high risk to individuals’

rights and freedoms.

ICO Reporting

Where legally required, Nurture Education will report personal data breaches to the Information

Commissioner’s Office (ICO) within 72 hours of becoming aware of the breach.

The report may include:

• Nature of the breach

• Categories of affected data

• Number of individuals affected

• Likely consequences

• Mitigation measures taken

• Contact details for further information

Where the breach is not reported within 72 hours, reasons for delay will be documented.

Notification to Affected Individuals

Where a breach is likely to result in a high risk to individuals, affected persons will be informed

without undue delay.

Notifications may include:

• Description of the breach

• Information affected

• Potential consequences

• Actions already taken

• Steps individuals should take to protect themselves

• Contact information for support

Notifications will be clear, transparent, and timely.

Cyber Security Incidents

Nurture Education recognises the growing risk of cyber attacks within the education and

recruitment sectors.

Cyber incidents may include:

• Malware

• Ransomware

• Hacking attempts

• Phishing attacks

• Email compromise

• Unauthorised remote access

The organisation will:

• Maintain appropriate cyber security controls

• Use secure passwords and multi-factor authentication where possible

• Apply software updates and security patches

• Maintain antivirus and firewall protections

• Restrict system access based on role

• Conduct staff cyber awareness training

Safeguarding-Related Data Breaches

Where a breach involves safeguarding records, DBS information, allegations, or child

protection concerns:

• The Designated Safeguarding Lead (DSL) must be informed immediately

• Additional safeguarding risk assessments may be completed

• Relevant schools or authorities may be informed where necessary

• Child welfare considerations will take priority

Breach Register

Nurture Education will maintain a secure breach log containing:

• Incident reference number

• Date and time

• Nature of incident

• Individuals affected

• Risk assessment outcome

• Actions taken

• ICO reporting decisions

• Lessons learned

• Closure date

All breaches will be documented, including those not reportable to the ICO.

Investigation & Post-Incident Review

Following resolution of an incident, Nurture Education will complete a review to:

• Identify root causes

• Assess response effectiveness

• Improve controls and procedures

• Identify training needs

• Reduce likelihood of recurrence

Corrective actions may include:

• Policy updates

• Additional training

• Security improvements

• Disciplinary action where appropriate

• Supplier reviews

Training & Awareness

All staff will receive regular training covering:

• Data protection responsibilities

• Recognising data breaches

• Cyber security awareness

• Secure handling of safeguarding information

• Phishing and email security

• Incident reporting procedures

Training will be refreshed regularly.

Monitoring & Review

This policy will be reviewed:

• Annually as a minimum

• Following major incidents

• Following legal or regulatory changes

• Following ICO guidance updates

• Following cyber security risks or audit findings

This policy reflects UK legal and safeguarding expectations applicable during 2026.

Policy Approval

Approved By : Andrew Marr Date 29.05.2026

Review Information

Item Data Breach and Incident policy Date 29.05.2026

Policy Review Date 29.05.2026

Next Review Date 29.06.2027

Contact Information

For questions relating to this policy or to report a data breach, contact:

Nurture Education

Data Protection Lead: _Andrew Marr

Email: _ andrew@nurtureeducation.co.uk

Environmental Impact & Carbon Reduction Policy

Approved by: Andrew Marr

Date: June 2026

Next Review: June 2027

1. Purpose of This Policy

Nurture Education is committed to reducing our environmental impact and contributing to the

UK’s transition to a low-carbon economy. This policy outlines our approach to sustainability,

carbon reduction, responsible resource use, and environmentally conscious business

operations.

Our commitments align with national carbon-reduction targets, the Public Services (Social

Value) Act, and the expectations of schools, trusts, and public-sector frameworks.

2. Scope

This policy applies to:

• All Nurture Education employees

• All co-working office locations

• All recruitment, placement, and operational activities

• All digital systems and supply-chain partners

3. Our Environmental Commitments

Nurture Education commits to:

• Reducing carbon emissions across all business operations

• Minimising waste and promoting sustainable resource use

• Encouraging low-carbon travel and remote working

• Working with environmentally responsible suppliers

• Supporting schools in reducing their own environmental impact

4. Carbon Reduction Plan

Nurture Education has implemented a structured Carbon Reduction Plan built around four

pillars:

4.1 Low-Carbon Workspaces

We operate from co-working spaces that are committed to carbon-reduction initiatives,

including:

• Renewable-energy powered buildings

• Energy-efficient lighting and heating

• Waste-reduction and recycling schemes

• Shared resources to reduce environmental footprint

This significantly reduces the carbon impact associated with traditional leased offices.

4.2 Hybrid Working Model

To reduce commuting emissions, Nurture Education staff work:

2 days per week from home

3 days per week in co-working spaces

This hybrid model reduces:

• Carbon emissions from travel

• Office energy consumption

• Resource usage (heating, lighting, water)

4.3 Low-Carbon Candidate Deployment

We actively reduce travel emissions by:

Placing candidates as close to home as possible

• Prioritising local schools for supply staff

• Using postcode-based matching to minimise travel distance

• Encouraging public transport, cycling, and walking

This reduces carbon output and improves candidate wellbeing.

4.4 Digital-First Operations

We minimise paper and physical resource use by:

• Using digital compliance packs

• Digital timesheets and invoicing

• Online safeguarding and compliance training

• Cloud-based document storage

• E-signatures for contracts and onboarding

This reduces printing, paper waste, and physical storage requirements.

5. Additional Environmental Initiatives

To strengthen our environmental performance, Nurture Education also commits to:

5.1 Sustainable Procurement

We prioritise suppliers who demonstrate:

• Low-carbon operations

• Ethical sourcing

• Environmental certifications

• Reduced packaging

5.2 Waste Reduction

We minimise waste through:

• Recycling in all co-working spaces

• Zero single-use plastic in office environments

• Reusable office supplies

• Responsible disposal of electronic equipment

5.3 Energy Efficiency

We reduce energy consumption by:

• Using energy-efficient devices

• Automatic power-saving settings

• Encouraging staff to switch off equipment when not in use

5.4 Staff Engagement

We promote environmental awareness through:

• Internal sustainability briefings

• Encouraging low-carbon commuting

• Sharing best practice on home-office energy efficiency

5.5 Carbon-Conscious Travel Policy

We reduce travel emissions by:

• Minimising unnecessary travel

• Using video meetings as default

• Encouraging public transport over car use

• Supporting cycle-to-work schemes

6. Measuring & Reporting Environmental Impact

We track and review:

• Carbon emissions from travel

• Office energy usage

• Waste and recycling levels

• Supplier environmental performance

• Progress against carbon-reduction targets

Annual reviews ensure continuous improvement.

7. Governance & Accountability

Environmental responsibility is overseen by:

Operations Director – strategic oversight

Office Manager – monitoring and reporting

All staff – responsible for day-to-day environmental behaviours

8. Continuous Improvement

We commit to:

• Reviewing this policy annually

• Updating our Carbon Reduction Plan in line with UK government targets

• Exploring new technologies and practices that reduce environmental impact

• Working with schools to support their sustainability goals