Data Protection Manager
- Recruiter
- Michael Page Legal
- Location
-
England, London
London (Central)London (Greater)
- Salary
- Negotiable
- Posted
- 12 Nov 2020
- Closes
- 03 Dec 2020
- Ref
- JN -112020-1554308
- Job Title
- Head of Compliance
- Category
- Legal
- Contract Type
- Permanent
- Hours
- Full Time
A broad, operation Data Protection Manager role, covering all aspects of data protection, including: DPIAs, ROPAs, training, advisory and stakeholder management. This London based role sits in a well established, London based Housing Association.
Client Details
This London based Data Protection Manager role sits with a Housing Association and will suit someone with data protection experience gained in a a similar position.
Description
This London based Data Protection Manager role sits with a Housing Association and involves:
Profile
This London based Data Protection Manager role sits with a Housing Association and requires:
Job Offer
Please enquire for full details
Client Details
This London based Data Protection Manager role sits with a Housing Association and will suit someone with data protection experience gained in a a similar position.
Description
This London based Data Protection Manager role sits with a Housing Association and involves:
- Reporting to the Head of Risk and Assurance, you will lead your team on all data protection related matters.
- Be the point of contact for all data protection and privacy related queries, assist colleagues in the resolution of such queries and liaise with the Information Commissioner's Office on all enquires and investigations.
- Provide regular performance reports for review by the Head of Risk and Assurance that identifies themes and trends for data protection work, emerging risks and service improvement recommendations for discussion at Committees.
- Ensure that data protection and privacy related strategies, policies, procedures and documentation (including privacy notices) are up to date, fit for the company's purposes and reflect regulatory requirements and best practice.
- Develop and deliver an annual programme of assurance to assess and report compliance against our procedures, making recommendations for improvement were weaknesses are identified.
- Identify and resolve privacy risks and requirements for key projects and business change initiatives and communicating those to stakeholders. As well as fostering a data protection culture by raising awareness and advocating privacy-by-design for all group projects.
- Manage and resource the timely completion of Data Protection Impact Assessments (DPIAs) and all information rights requests (including Subject Access).
- Work collaboratively with stakeholders across the business to help embed security and privacy principles and drive good behaviours. This includes co-ordinating the activity of the data champions network and delivering bespoke training across the Group.
- Oversee the investigation of any data breaches or security incidents involving personal information, ensuring lessons are learnt and control improvements are identified and implemented.
- Advise and make recommendations on the safe sharing of data with third parties, including drafting data sharing and data processing agreements and relevant contract clauses.
- Applying the Privacy and Electronic Communication Regulation (PECR) rules and ensuring compliance of all internal and external communications.
- Carrying out Legitimate Interests Assessments (LIA) and creating Records of Processing Activities (ROPA).
- Keep track of any regulatory guidance and trends at national and EU levels, and communicate such changes to relevant business stakeholders and oversee timely implementation of the changes that are required.
- Actively participate in the Data Protection Group and share good practice.
Profile
This London based Data Protection Manager role sits with a Housing Association and requires:
- Ideally data protection experience gained in a housing association
- Experience in a data protection capacity, including advising on privacy issues, Subject Access Requests, Privacy Notices and information sharing.
- Relevant Privacy and/or Data Protection certification (e. CIPP, ISEB Practitioner Certificate in Data Protection) or other relevant professional qualification.
- Knowledge of and experience in the principles and requirements of the DPA 2018 and the General Data Protection Regulation (GDPR).
- Experience in providing pragmatic, commercial and creative solutions to aid compliance.
- Experience in proactively engaging stakeholders to facilitate buy-in and decision making.
- Excellent written and verbal communication skills.
- Experience in project management and implementing large scale initiatives.
- Organised, ability to manage workload within tight deadlines, self-motivated and capable of working independently and as part of a team.
- Track record working in an agile environment where you are expected to identify and develop innovative solutions to challenges.
Job Offer
Please enquire for full details