Deputy Data Protection Officer

A great opportunity to join a friendly and collaborative Data Protection and Freedom of Information team. This Deputy Data Protection Officer role will play a key part in developing and embedding a successful data protection compliance culture.

Client Details

This Data Protection Officer role is with a non-departmental public body (England & Wales), the role offers hybrid working, ideal locations for the successful candidate are Birmingham, Manchester, Cardiff and West Yorkshire

Description

This Data Protection Officer role is with a non-departmental public body (England & Wales), the role offers hybrid working, ideal locations for the successful candidate are Birmingham, Manchester, Cardiff and West Yorkshire.

The role involves:

The job holder will be responsible for helping to promote and embed a compliance culture which embraces the concept of 'data protection by design and default', by ensuring that the organisation uses effective governance arrangements and documentation to achieve/maintain compliance with relevant legal, regulatory and policy requirements governing the processing of personal data.

The job holder will also be responsible for the periodic production/dissemination of management information associated with the processing of personal data.

They will also take the lead on the development of the internal data and information champions and establishing/maintaining positive working relationships between the FOI and DPA Team and a range of other relevant stakeholders (including Information Asset Owners; requesters, other government departments; privacy and data protection campaign/advocacy groups; etc.).

• • Supporting and helping to maintain a robust governance framework that will support compliance with privacy and data protection legislation;
  • Working collaboratively with colleagues in the FOI and DP Team, Knowledge and Information Management Team, Archives and Records Management, Operations Management, IT and other areas of the organisation with policy and governance responsibilities, to ensure data privacy and protection compliance is integrated into policies, standards and procedures (whilst avoiding any duplication of effort);
  • Leading on the completion and maintenance of personal data inventories, registers and maps required to support compliance with privacy and data protection recordkeeping, transparency and accountability requirements; overseeing the provision of associated specialist advice and guidance; and working with colleagues to integrate them
  • Co-ordinating and management of personal data inventories/maps, audits and Data Protection Impact Assessments (DPIAs);
  • Managing the team's stakeholder relationships in conjunction with internal comms and press team.
  • Working with the Procurement Team to ensure appropriate data processor agreements are in place with any external service providers acting as a data processor
  • Working with the Stakeholder Engagement Team and other relevant colleagues, to ensure that appropriate overarching governance arrangements for the sharing of personal data (template Memoranda of Understanding etc.) are fit for purpose;
  • Working proactively with internal teams to ensure that appropriate privacy and data protection training materials are being provided and promoted to staff;
  • Overseeing the periodic collation and analysis of relevant statistics and management information
  • Advising and influencing colleagues up to the level of Director, who are responsible for: governance; business processes, systems and other technologies used to process personal data

Profile

This Data Protection Officer role is with a non-departmental public body (England & Wales), the role offers hybrid working, ideal locations for the successful candidate are Birmingham, Manchester, Cardiff and West Yorkshire.

The role requires:

• An in-depth knowledge of current UK and EU privacy and data protection legislation (including the Data Protection Act 2018, General Data Protection Regulation, Human Rights Act, Privacy and Electronic Communications Regulations, ePrivacy Directive)
• Experience of working in an auditing/compliance/governance context and good knowledge of compliance audit best practice.
• An in-depth knowledge of relevant statutory codes of practice, decisions and guidance issued by: the ICO; courts and tribunals; the Article 29 Working Party; and other relevant sources;
• The ability to anticipate/evaluate potential privacy and data protection compliance challenges;
• Excellent communication, influencing, negotiation and stakeholder management skills;
• The ability to assimilate and interpret information quickly; and explain complex legal, regulatory and policy requirements to colleagues and external stakeholders at all levels;

Job Offer

Please submit an application or enquire for full details