About Kaleidoscope Consultants

Established in 2012, Kaleidoscope Consultants are subject matter experts in information law, privacy and regulatory policy in health and social care. We provide expert advice on strategies to enable data exchanges, and development of national guidance for public and private sector organisations on the lawful use of Personal Confidential Data. We have in-depth knowledge of all aspects of the lawful utilisation and sharing of Personal Confidential Data and have created lean and robust governance approaches and systems that provide effective technical and organisational control.

Our broad range of clients consult us for the reassurance and enjoyment of working with authoritative and enthusiastic subject matters experts in information governance. We are active in our support for organisations in their understanding and preparation for the Data Protection Act 2018, incorporating the General Data Protection Regulation (GDPR).

Kaleidoscope works directly with organisations, and frequently through non-specialist consultancies and legal advisers.

We have produced guidance for NHS England and NHS Improvement, delivered training for Department of Health, helped Public Health England, supported Commissioning Support Units and Clinical Commissioning Groups. We have worked with all types of NHS and private sector care providers and local authorities, including public health, as well as software houses, app developers and other NHS services. Our clients and projects are spread across the UK, EU, USA, and the Middle East.

Our work has included:

  • Governance arrangements and deployments of Health and Social Care Integrated Digital Care Records
  • Initiatives to enable information sharing
  • Privacy Impact Assessments for major procurements, joint ventures and large-scale processing
  • Data Protection Impact Assessments for large-scale processing
  • Developing national policy, section 251s and supporting guidance
  • Helping commissioners develop information strategies and CQINNS
  • Interim management in both payers and providers
  • Gaining access to NHS Digital services for local authorities, software houses and independent providers
  • Training, workshops and public speaking
  • Supporting health researchers including completion of Section 251 applications.

We are enthusiastic about our subject and delighted to have opportunities to share our knowledge and enthusiasm with our clients.


David Stone BA(Hons), DipM, MBA

Managing Director

David started his career in Information Governance with the NHS Connecting for Health Technical Office IG Team, when he was co-leader of a national programme to migrate all NHS Connecting for Health service users onto a single agreement – the Information Governance Statement of Compliance (IGSoC). This was successfully delivered in 16 months, by which time more than 20,000 organisations had been migrated.

After a short stint supporting Primary Care Trusts across London for NHS London, David joined a consultancy, where he spent three years developing an IG practice, working across multiple health and social care settings, including acute, mental health, ambulance, community, social care, Any Qualified Provider and private providers. During this time, David also wrote and delivered national training for the Department of Health, including:

  • Senior Information Risk Owners and Information Asset Owners
  • Information Asset Administrators
  • Information Governance Toolkit v8 new functionality
  • Information Governance Training Tool

David continues to engage with the health and social care IG communities. He is a member of many national groups, and a frequent conference speaker. Since forming Kaleidoscope in 2012, David has worked with NHS England, collaboratively with DH and LGA, and supporting commissioning organisations to understand the new landscape after the Health and Social Care Act.

He is enthusiastic about the positive impact of good information governance on delivering effective health and care. He is actively engaged in understanding the new legislative landscape brought about by GDPR, the new DPA and the statutory instrument that will give powers to the new National Data Guardian, and regulations on cyber security to CQC.


David Birkinshaw LLM Information Rights Law and Practice

Senior Consultant

David Birkinshaw began his NHS career in 2003, working in ICT for Bromley PCT, having previously worked for Egton Medical Information Systems (EMIS) from 1998. In Bromley, he helped over 50 GP Practices through their first few Information Governance Toolkit returns, whilst also supporting them with their ICT needs.

In 2008, David joined a small consultancy as part of their Information Governance practice, working with David Stone from 2009, and spending the next seven years working in many different areas of health IG including General Practice, Acute, Mental Health and private organisations supporting healthcare.

David joined David Stone at Kaleidoscope in 2015 as a senior consultant, and completed his law masters (LLM) in Information Rights Law and Practice in 2016.


Katie Stone BA (Hons), DMS, Chartered MCIPD

Head of Resourcing and Operations

Katie has nearly 20 years’ experience in public sector HR, originally specialising in learning and development, and then quickly broadening her work to all aspects of HR.

Katie has considerable experience in recruitment, policy development (including working with trade union and staff bodies), case work, developing reward strategies and merit schemes, and setting up systems to ensure that all aspects of HR work are aligned and work for the good of the business.

Katie was Head of HR and Internal Communications for the Competition Commission and, after working on the transition into the new non-ministerial department, was a Senior HR Business Partner for the Competition and Markets Authority. She left the Civil Service to join Kaleidoscope Consultancy in 2016 to help establish the resourcing and training businesses. Earlier in her career, Katie worked in communications, publishing and administration at the King’s Fund and the National Union of Teachers.

Katie is a convert to the exciting world of information governance, and is currently waiting for the results of her BCS qualification in the Data Protection Act 1998.