RISING STAR

This category celebrates individuals in the early stages of their careers, specifically, those with less than five years of experience. They have demonstrated exceptional promise in the fields of Privacy, Compliance, Security, InfoSec or Data Ethics. Nominees should provide evidence of significant contributions, such as leading innovative projects, introducing new approaches within their role, or making impactful changes within their organisations. Submissions should highlight the nominee's potential for future leadership and their commitment to advancing the industry.​

AUTHOR/CREATOR OF THE YEAR

This award recognises an individual who has made a significant contribution to the industry through original content - whether written, spoken or digital. Submissions may include books, articles, blogs, newsletters, podcasts, videos or other forms of media that have helped to inform, educate and engage audiences on key topics. Nominees should demonstrate how their content has sparked discussion, raised awareness, or influenced thinking within the industry and beyond.

INSPIRING COMMUNICATIONS AWARD

This category honours outstanding communication efforts that have effectively conveyed complex privacy or security concepts to diverse audiences. Nominees should present examples of campaigns, internal communications, thought leadership, or digital content that have successfully raised awareness, influenced behaviour, or fostered a culture of privacy. Submissions should emphasise creativity, clarity, and the tangible impact of the communications on the intended audience.

BEST PRIVACY CULTURE IMPROVEMENT AWARD

This award recognises organisations that have successfully transformed their internal culture to prioritise privacy. Nominees should provide evidence of initiatives that have led to measurable improvements in privacy awareness and practices. Submissions should detail the strategies employed to achieve cultural change, such as leadership engagement, employee training, policy development, or the integration of privacy considerations into everyday business processes..

BEST PRIVACY PROGRAMME AWARD

This category celebrates comprehensive privacy programmes that have significantly enhanced data protection within an organisation. Nominees should detail the objectives, implementation strategies, and outcomes of their programmes, highlighting how they align with regulatory requirements and organisational goals. Submissions should demonstrate cross-functional collaboration, innovation, and measurable improvements in privacy risk management and performance..

BRIDGING THE PRIVACY AND SECURITY GAP

This award acknowledges efforts that effectively integrate privacy and security functions to deliver greater organisational alignment and improved outcomes. Nominees should showcase collaborative initiatives that address overlapping challenges and promote unified strategies, such as shared risk assessments, joint frameworks, or combined governance models. Submissions should illustrate how these efforts have enhanced communication, reduced silos, and resulted in tangible benefits for both domains.

ESG PRIVACY INITIATIVE

This category recognises initiatives that align data privacy efforts with Environmental, Social, and Governance objectives. Nominees should demonstrate how privacy practices contribute to broader ESG goals, such as reducing carbon emissions through data minimisation, supporting individual data rights, or enhancing transparency. Submissions should provide evidence of strategic alignment between privacy practices and wider ESG commitments, particularly where this has driven innovation or competitive advantage

DE&I LEADERSHIP EXCELLENCE AWARD

This award honours individuals or organisations leading the way in embedding Diversity, Equity, and Inclusion within the privacy or security sectors. Nominees should highlight programmes or policies that foster inclusive environments and equitable opportunities, such as internal leadership programmes, mentorship, inclusive hiring practices, or broader contributions to the representation and inclusion of underrepresented voices in the field. Submissions should demonstrate sustained and measurable progress, with DE&I at the heart of their values and operations.

COMPLIANCE CHAMPION OF THE YEAR

This award celebrates an individual who has demonstrated outstanding leadership in compliance, particularly in navigating and interpreting data protection laws and regulations. Nominees should detail their proactive approach to compliance, risk management, and fostering a culture of accountability, showcasing how they have ensured robust compliance frameworks and supported their organisation in understanding and embracing a culture of compliance.

INFOSEC CHAMPION OF THE YEAR

Awarded to an individual who has made a noteworthy contribution to information security. Nominees should present initiatives that strengthen security posture, mitigate risks, and promote best practices, such as leading major security improvements, driving best practices across an organisation, or bridging the gap between technical and business stakeholders. Submissions should showcase measurable impact and how the individual has championed security as an enabler of trust and resilience.

PRIVACY CHAMPION OF THE YEAR

This individual award is for someone who has gone above and beyond to advocate for privacy and data protection, either within their organisation or more broadly in the community or industry. Nominees should exhibit leadership in promoting ethical data practices and influencing positive change, demonstrating consistent advocacy, a strong ethical stance, and a proactive role in promoting privacy rights, culture, or best practices. Submissions should highlight specific actions taken and their impact on the organisation or community.

RESPONSIBLE AI & DATA ETHICS INITIATIVE OR LEADERSHIP

This award recognises efforts in developing or leading responsible AI and data ethics practices. Nominees should provide examples of ethical frameworks, governance models, or initiatives that guide responsible technology use, demonstrating leadership in ensuring ethical approaches to artificial intelligence and data use. Submissions should highlight how these efforts promote fairness, accountability, transparency, and societal benefit.

SAFEGUARDING CHILDREN'S DATA AWARD

This category is awarded to organisations or individuals who have shown exceptional commitment to protecting children's data. Nominees should demonstrate strategies that address the unique challenges of handling children's data responsibly, such as innovative approaches to age-appropriate design, parental controls, digital literacy, or privacy-by-design specific to children’s products and services.

OUTSTANDING DPO

This award recognises an exceptional Data Protection Officer (DPO) who has demonstrated leadership in ensuring robust data protection practices within their organisation. Submissions should highlight the nominee's success in managing data protection risks, influencing senior leadership, and fostering a culture of privacy. Key achievements could include driving compliance, implementing privacy strategies, and overcoming challenges to protect data and rights. The nominee should show how they’ve effectively integrated privacy into business operations and ensured the organisation meets regulatory requirements.

INDUSTRY NETWORK OF THE YEAR

This award recognises a network or group that provides exceptional support, collaboration, and resources to its members within the privacy, security, or data protection industry. Submissions should highlight how the network fosters professional growth, knowledge-sharing, and mutual support, whether through events, mentoring, or shared resources. The winner will be a network that has made a significant impact by helping members thrive and build stronger connections within the industry.

LAW FIRM OF THE YEAR

This category recognises a law firm that has delivered outstanding support in the areas of privacy, data protection, and related legal disciplines. Submissions should outline the firm’s achievements over the past year, including notable client work, leadership in regulatory matters, contributions to policy development, or innovative legal solutions. Nominees should include examples that demonstrate depth of expertise, industry impact, and commitment to advancing privacy and data ethics through legal practice.

ISO 27001 / ISMS TEAM OF THE YEAR

This award celebrates a team that has successfully implemented, maintained, or advanced an ISO 27001-certified Information Security Management System (ISMS). Submissions should describe how the team has embedded information security into their organisation’s operations, improved compliance, and driven continuous improvement. Nominees should include details of key activities, challenges overcome, and measurable outcomes that demonstrate excellence in information security governance and risk management.

COMPLIANCE TEAM OF THE YEAR

This category recognises a team that has excelled in establishing or enhancing organisational compliance with data protection and privacy regulations. Submissions should outline the team’s strategic approach, collaborative efforts, and specific projects or initiatives delivered over the past year. Nominations should include tangible outcomes such as policy development, audit performance, training initiatives, or effective risk mitigation measures that support a culture of accountability and compliance.

INFOSEC TEAM OF THE YEAR

This award recognises an information security team that has achieved outstanding results in strengthening their organisation’s security posture. Submissions should detail major projects, initiatives, or ongoing efforts that demonstrate innovation, resilience, and a proactive security culture. Nominations may include examples of threat management, incident response, architecture improvements, or awareness programmes that have driven meaningful change.

PRIVACY TEAM OF THE YEAR

This category honours a team that has demonstrated excellence in delivering privacy strategy, operations, and outcomes within their organisation. Submissions should showcase how the team has embedded privacy by design, improved data handling practices, responded to regulatory demands, or led impactful privacy initiatives. Nominations should reflect strong collaboration, innovation, and measurable progress in building a mature privacy programme.