Data Protection Manager – Ealing (£62 500 + Pension, Healthcare benefits, and Life Assurance)
This is an excellent opportunity to join an already GDPR compliant organisation that improves the lives of hundreds of thousands of people across the UK and lead a team in building their future data security and privacy capabilities.
Based in Ealing (initially working remotely), this role is paying up to £62 500 + Pension, Healthcare benefits, and Life Assurance.
Voted one of the UK’s top 100 companies to work for, our client is so much more than just a housing development company, they develop and uplift communities and provide quality homes for those who otherwise could not afford them, thus improving the lives of hundreds of thousands of people across the country. Not only does this mean that your job has a greater purpose, but you will also be joining an organization that genuinely cares for, and invests in their employees through professional career development planning, training, paid for professional memberships, flexible leave, and flexible working as well as a plethora of other benefits and perks.
Whilst the organisation is currently compliant with the provisions of the GDPR, they are looking to appoint a Data Protection Manager to lead an existing team in furthering the organisations data protection and privacy measures and ensure ongoing compliance.
- Reporting to the Head of Risk and Assurance, you and your team will handle all data protection and privacy related matters
- Assist colleagues in the resolution of such queries and liaise with the Information Commissioner’s Office on all enquires and investigations.
- Provide regular performance reports that identifies themes and trends for data protection work, emerging risks, and service improvement recommendations
- Ensure that data protection and privacy related strategies, policies, procedures and documentation (including privacy notices) are up to date, fit for the company’s purposes and reflect regulatory requirements and best practice.
- Develop and deliver an annual programme of assurance to assess and report compliance against company procedures, making recommendations for improvement were weaknesses are identified.
- Identify and resolve privacy risks and requirements for key projects and business change initiatives
- Foster a data protection culture by raising awareness and advocating privacy-by-design for all group projects.
- Manage and resource Data Protection Impact Assessments (DPIAs) and all information rights requests (including Subject Access).
- Help embed security and privacy principles and drive good behaviours through training and coordinating the activity of the data champions network.
- Oversee the investigation of any data breaches or security incidents
- Advise and make recommendations on the safe sharing of data with third parties, including drafting data sharing and data processing agreements and relevant contract clauses.
- Applying the Privacy and Electronic Communication Regulation (PECR) rules and ensuring compliance of all internal and external communications.
- Conduct Legitimate Interests Assessments (LIA) and creating Records of Processing Activities (ROPA).
- Keep track of any regulatory guidance and trends at national and EU levels and oversee timely implementation of the changes that are required.
- Relevant Privacy and/or Data Protection certification (e.g. CIPP, ISEB Practitioner Certificate in Data Protection) or other relevant professional qualification.
- Knowledge of and experience in the principles and requirements of the DPA 2018 and the General Data Protection Regulation (GDPR).
- Experience in a data protection capacity, including advising on privacy issues, Subject Access Requests, Privacy Notices, and information sharing.
- Experience in project management and implementing large scale initiatives.
If this role appeals to you, please send a copy of your CV to firstname.lastname@example.org