Assertion 10 GDPR Compliance: Is Your Council Ready for AGAR 2025/26

Starting from the 2025/26 financial year, Assertion 10 will be a formal part of every local council’s AGAR (Annual Governance and Accountability Return).

Changes announced in the 2025 Practitioners' Guide include a crucial new requirement that councils must be able to demonstrate compliance with data protection laws as part of their annual return.

And that’s where the challenge begins.

Why Assertion 10 Is More Than a Tick-Box

Assertion 10 isn’t something that can be covered by a single policy document or a vague intention to improve. It demands evidence of actual compliance in practice, not just theory.

That means:

• Demonstrating adherence to UK GDPR, the Data Protection Act, and the Freedom of Information Act

• If relevant, carrying out regular data protection audits

• Having up-to-date data protection and information compliance policies that reflect the specific ways your council operates

• Evidencing that council staff and councillors have received regular, relevant training

For many councils, this level of rigour presents a real challenge. Local councils are already juggling increasing workloads and tighter budgets. All of this creates a perfect storm of uncertainty and pressure, particularly when the AGAR deadline looms.

Take the Stress Out of Assertion 10. Join Our Free Webinar.

If this all feels like a lot, you’re not alone. That’s exactly why we’re hosting a free webinar, specifically for local councils, to explore:

• What Assertion 10 really requires (and what it doesn’t)

• The common GDPR pitfalls where trip councils up

• How to take a practical, manageable approach to data protection compliance

If you want to take the stress and uncertainty out of Assertion 10, this session is for you.

👉 Reserve your free place now and take the first step toward confidence and clarity.