Who We Are and What We Do

Welcome to Adiru Consulting: Your Partner for Business Success

In a rapidly evolving business landscape, staying ahead is about more than just keeping up with trends. It’s about being guided by expert insights, strategic acumen, and a deep understanding of your unique business needs. This is where we, at Adiru Consulting, come into play. Our aim is to empower businesses with the knowledge and tools they need to succeed in a demanding, fast-paced, and increasingly digital marketplace.


Who Are We?

Adiru Consulting LTD is a UK-based management consultancy that specialises in helping businesses thrive in a competitive environment. We were born out of a desire to offer small and medium-sized businesses the expert guidance usually reserved for large corporations. Our expertise spans across key business disciplines, designed to cater to the foundational aspects of any successful business.

While each of our service areas can stand alone in delivering results, the true magic happens when they align. This holistic approach ensures that every aspect of a business is geared towards a unified goal. It’s this synergy, this perfect alignment, that paves the way for unparalleled success.

Let’s delve further into each of our service areas:

🟣 Information Governance

Information governance is the cornerstone of modern business. In the age of big data, managing, protecting, and leveraging information effectively is crucial for business success. Our information governance service helps businesses establish a robust framework to manage information assets efficiently. We assist with policy development, process improvement, and training, to help your team understand the importance of proper information handling and align it with your strategic objectives.

🟣 Data Protection

With the rise of cyber threats and stringent regulations like the UK GDPR, data protection is a top priority for businesses. We offer expert guidance on how to safeguard sensitive data and remain compliant with data protection laws. Our services include conducting data protection audits, implementing data security measures, and providing training to foster a culture of data protection within your organisation.

🟣 Risk Management

No business is immune to risks, but with the right strategy, risks can be managed and even turned into opportunities. Our risk management service is designed to help you identify, assess, and manage potential threats to your business. We work alongside you to create a risk management strategy that aligns with your business objectives, fosters resilience, and facilitates informed decision-making.

🟣 Human Resource Management

People are a company’s greatest asset. We offer human resource management services to help businesses attract, develop, and retain talent. Our services include advising on HR strategy and policies, performance management, and employee engagement. We also provide training on HR best practices to help your HR team become more effective and strategic.

🟣 ISO 9001:2015 and ISO 27001:2022 Compliance

Compliance with international standards like ISO 9001:2015 (Quality Management System) and ISO 27001:2022 (Information Security Management) can set your business apart in the market. We help businesses understand these standards, prepare for certification, and maintain compliance. Our comprehensive approach ensures that these standards are not just met but embedded into your business culture.

🟣 Corporate and Charity Governance

Good governance is vital for the success and sustainability of any organisation. Our corporate and charity governance service provides advice on how to establish a governance framework that promotes transparency, accountability, and ethical behaviour. Whether you’re a startup, a charity, or a well-established business, we can guide you in setting up a governance structure that meets regulatory requirements and aligns with your organisational values.


Partnering with Us

At Adiru Consulting, we don’t just provide services; we partner with you on your journey to success. We are committed to understanding your unique business needs and customising our services to match them. We believe in offering practical, actionable advice that can be implemented swiftly and effectively.

“We are not just your consultants; we are an extension of your team.”


In Conclusion…

Our goal is to make quality management consultancy accessible and valuable for every business. Whether you’re grappling with information governance issues, trying to navigate data protection laws, managing risks, streamlining HR practices, striving for ISO compliance, or establishing governance structures, we’ve got you covered. We are here to guide, support, and empower you on your path to business success.

Our Story…

So, a little about me…and I feel I should start with the reason why I chose to name the Company as I have.  Despite being a coincidental acronym for the services I offer (Advisers in Data Protection, Information Security, Risk Management and Underlying Corporate Governance), Adiru is actually my middle name.  In the language of my birthplace, Lugbara, its meaning is “born during war” – referencing the Ugandan Civil War of the early 1980s that resulted in my family moving to the UK and establishing a new life for myself and my siblings.

The spring/summer of 2020 instigated a period of deep personal reflection for me…the world fighting a war against the Covid-19 pandemic, whilst social unrest was suddenly amplified by the barbaric killing of George Floyd and the ever-growing Black Lives Matter movement…but this time was different…this time the entire globe was engaged…and I heard a united roar that “things must change”.   On numerous occasions I read and heard the statement “this is not a moment; this is a movement” and I felt a call to join those that are actively pursuing change.  I wanted to be a part of that universal voice whose mission was to create a better future for the next generation, including my own children.

So, what could I do to help?  My professional background has been quite varied.  Studying Accounting and Law at university directed my early career towards UK Taxation.  My interest in the value of employees and the power of great communication led to seeking a qualification with the Chartered Institute of Personnel and Development (CIPD), which progressed to employed roles within Corporate Governance and Data Protection.

I realised that my knowledge and experience had already been of great value to organisations throughout my career, but my inner drive for social and corporate equality could particularly positively impact those individuals seeking independence from covert racism by branching out and embracing their entrepreneurial spirit. 

Black businesses in the UK are growing exponentially (particularly with women founders!) and the inception of the monthly Black Pound Day starting on June 27th 2020, provides an avenue for consumers to discover and support new and existing Black-owned businesses to spend their money with, thereby sustaining and evolving the market.  Increased growth through sales will inevitably lead to a greater number of employees and a greater emphasis on the strategic approach to operational activity.  This is where guidance and advice from Adiru Consulting Ltd can make the difference between sustained growth and expansion versus limitations due to an inability to manage increased customer demand.

My mission is to level the playing field by implementing strong governance systems within these businesses, that will enhance our status, our access to wider markets and ultimately our ability to attract investment.

I have been inspired by recent turmoil and driven to engage with Black owned businesses, empowering them to reach their strategic goals by partnering with my business:  

Why is Data Protection so Important to Small Businesses?

The simple answer…because it’s so important to modern life.

This blog aims to provide you with the fundamentals of the current UK legislation and best practice. Whether a sole trader, charity, limited company, or any form of social enterprise; if you’re “processing” personal data, sit up and pay attention to the evolving regulatory landscape that surrounds you.

In this digital age, data is now the most valuable commodity. Previously gold, oil and even spice, data is currently the most precious resource. Why? Because it’s intrinsic to modern business and everyday life. Just think identify theft, malware attacks, international organisations locked out of their own systems by ransomware. Consider surreptitious banner advertisements persuading you to make that online purchase, or (although extreme) algorithms that profile individuals based on their content choices in order to influence the direction in which they cast a political vote. Perhaps not so extreme…?

The wrongful use of data in these scenarios can impact private individuals to entire countries, causing anything from a minor inconvenience resulting from cancelling banks cards and resetting passwords; to destabilising a nation’s political landscape, the ramifications of which can be felt for years.

I know what you’re thinking: “I’m a small business, I don’t really have to worry about those things until I scale up! Securing a steady income and establishing my brand are the current priorities”.

Well, sorry (not sorry!) to share, but compliance to data protection is essential – regardless of the size of your organisation.

In fact, as a smaller business, you face greater exposure without access to resources or technical expertise that would support your privacy compliance.

The Legislation

In the UK, the principle acts of law that collectively form the UK data protection legislation are: the Data Protection Act 2018; the UK General Data Protection Regulation (remember when GDPR came into effect in May 2018? This is the UK-specific equivalent in accordance with our exiting the EU, ratified into UK law on 1st January 2021.)  Finally, the Privacy and Electronic Communications Regulation 2003, which mostly relates to digital marketing (and why you need that check box for visitors to opt-in to your website subscriptions). Other legislation exists, but these are the primary ones a small business owner should have an awareness of.

Data Protection in the UK is regulated by the Information Commissioner’s Office (ICO), a publicly funded independent authority which monitors the compliance of all organisations to privacy legislation, ensuring the rights of individuals are upheld. Ordinarily, if you process personal data as part of your business activities (beyond that of your staff for payroll purposes), your business will be listed on the public register, and you’ll be paying an annual registration fee. Unsure..?  Just look yourself up on the ICO’s website.

What is “Personal Data”?

Personal data is defined as:

“information that relates to an identified or identifiable natural person”.

This means any data that can be directly connected to a living individual; as well as any information, when combined with another piece of data, that could indirectly reveal the identity of an individual. Typical examples include; name; any unique identifier such as NHS number; phone numbers; email addresses; IP addresses from digital devices (think “cookies”); even vehicle number plates as these are usually registered to a single individual.

The following are excluded and therefore outside the scope of the legislation: information about companies and public authorities; deceased individuals (not considered as “natural persons”); or anonymised data, which is stripped of all personal identifiers.

The legislation makes additional provisions for is what is described as “Special Category” data. This personal information is considered to be more sensitive, as the mis-use could significantly impact upon the rights and freedoms of the individual,  and therefore is afforded even greater protection. Examples include race and ethnic origin data; religious or philosophical beliefs; political opinions; data related to sexual preferences, sex life and/or sexual orientation; and several more.

What is “Processing”?

If you’re doing ANYTHING in the course of your business activities that involves the personal data of private individuals, consider yourself to be “processing”. The legislation is broad in its interpretation and includes; using,  recording, storing, analysing, restructuring or deleting data.

Data protection has been introduced to safeguard individuals’ personal information. As a business owner you see both sides of the coin. Approach your use of customers’ data with the same respect you expect when you are the customer, or your families and children: keep it safe; be transparent in its use (by way of a Privacy Policy on your website); ask permission when using special category data; understand how long you will keep the data for and determine a method to delete it when appropriate; be aware of the rights of private individuals and always, always consider the impact of the way in which you use their personal information. 

Non-compliance risks damaging your business’ reputation, customer retention and negatively impacting growth. Whereas implementing robust governance around your handling of personal data will establish the solid foundations from which to scale.

Which will you choose..?