Data Protection ManagerData Protection Manager
Nuffield Health · Full-timeNuffield Health · Full-timeFeb 2022 - May 2023 · 1 yr 4 mosFeb 2022 - May 2023 · 1 yr 4 mosLondon, England, United KingdomLondon, England, United Kingdom
- Conducting comprehensive Data Protection Impact Assessments of projects, services and systems in order to identify and address potential privacy and confidentiality issues/risks.
- Drafting information sharing agreements.
- Liaising with internal and external colleagues to ensure contracts with clients, suppliers and other third parties protect both the commercial and legal position in relation to data privacy requirements, including advising on standard form Data Protection clauses or drafting new clauses as required.
- Providing appropriate advice and interpretation of the provisions of Data Protection legislation, guidance and statutory codes as they impact business activities in general and/or specific functions across all service lines and business functions.
- Liaising with IT/Information Security to understand the security measures in place to reassure clients and understand contractual obligations.
- Delivering data privacy training sessions to teams as needed.
- Updating internal policies and procedures in line with legislative requirements and business policies and procedures.• Conducting comprehensive Data Protection Impact Assessments of projects, services and systems in order to identify and address potential privacy and confidentiality issues/risks. • Drafting information sharing agreements. • Liaising with internal and external colleagues to ensure contracts with clients, suppliers and other third parties protect both the commercial and legal position in relation to data privacy requirements, including advising on standard form Data Protection clauses or drafting new clauses as required. • Providing appropriate advice and interpretation of the provisions of Data Protection legislation, guidance and statutory codes as they impact business activities in general and/or specific functions across all service lines and business functions. • Liaising with IT/Information Security to understand the security measures in place to reassure clients and understand contractual obligations. • Delivering data privacy training sessions to teams as needed. • Updating internal policies and procedures in line with legislative requirements and business policies and procedures.
Information Governance Data Protection OfficerInformation Governance Data Protection Officer
London Borough of Lambeth · Full-timeLondon Borough of Lambeth · Full-timeSep 2021 - Feb 2022 · 6 mosSep 2021 - Feb 2022 · 6 mosLondon, England, United KingdomLondon, England, United Kingdom
- Supporting the Information Governance team and DPO in respect of governance and data security.
- Improve the council’s overall compliance with the law by setting up several frameworks designed to ensure long term compliance and ensure all risks are managed.
- Drafting new data protection policies and procedures for the council and maintaining and reviewing current Information Governance Policies periodically for updating.
- Support with dealing with breaches and complaints.
- Creating and delivering training on DPA compliance to various service areas within the council.
- Produce performance statistics of requests and response times for Data Protection performance reports.
- Assist the council with undertaking Data Privacy Impact Assessments (DPIA) for new business initiatives, projects and IT developments.• Supporting the Information Governance team and DPO in respect of governance and data security. • Improve the council’s overall compliance with the law by setting up several frameworks designed to ensure long term compliance and ensure all risks are managed. • Drafting new data protection policies and procedures for the council and maintaining and reviewing current Information Governance Policies periodically for updating. • Support with dealing with breaches and complaints. • Creating and delivering training on DPA compliance to various service areas within the council. • Produce performance statistics of requests and response times for Data Protection performance reports. • Assist the council with undertaking Data Privacy Impact Assessments (DPIA) for new business initiatives, projects and IT developments.
● Working with Lambeth IICSA Independent enquiry into the abuse of children and dealing with sensitive information relating to child abuse.
● Process information requests (SAR Requests) for clients and other department.
● Drafted case summaries, chronologies, and letters to clients.
● Managing cases, handling client queries and complaints.
● Assigning work to team members, ensured the day to day running of my team.
● Planning and chairing meetings.
● Created and carried out training for groups of over 50 people and received managers praise for it.● Working with Lambeth IICSA Independent enquiry into the abuse of children and dealing with sensitive information relating to child abuse. ● Process information requests (SAR Requests) for clients and other department. ● Drafted case summaries, chronologies, and letters to clients. ● Managing cases, handling client queries and complaints. ● Assigning work to team members, ensured the day to day running of my team. ● Planning and chairing meetings. ● Created and carried out training for groups of over 50 people and received managers praise for it.
