Talent.com
This job offer is not available in your country.
Data Protection & Information Governance Support Lead

Data Protection & Information Governance Support Lead

Royal National Orthopaedic Hospital NHS TrustStanmore
30+ days ago
Salary
£42,939.00–£50,697.00 yearly
Job type
  • Permanent
Job description

Job summary

This post brings together the Information Governance Coordinate function (Information Governance Support Lead) and highly specialist knowledge and skills required to establish and maintain General Data Protection Regulation (GDPR) by supporting the Trusts Data Protection Officer (DPO). The post will act as a central and reporting point to the Data Protection Officer, Information Governance Manager & Deputy SIRO and the Information Quality & Governance sub-committee.

Main duties of the job

The post holder responsibilities to process Freedom of Information requests received by the Trust in accordance with corporate and legislative requirement; including logging, reviewing and collecting information and providing final responses to requestors. You will be required collating evidence for the NHS Toolkit submission, advising on the Trusts compliance with GDPR and local data protection laws, monitoring adherence to GDPR standards and acting as a point of contact with supervisory authorities and data subjects. Including drafting polices and enforce compliance with legislation and deliver NHS / GDPR training to staff to increase awareness of data protection.

From time to time you may be handling Subject Access Requests from staff or Government / Public bodies.

To be successful in this role, the post holder should have an in-depth knowledge of GDPR and local data protection laws and be familiar with the NHS and the nature of its data processing activities.

The Information Governance Support Lead role will assist Data Protection Officer and Information Governance Manager in managing the Information Governance across the Trust and will be deputised as the Information Governance Manager when required.

About us

RNOH Royal National Orthopaedic Hospital NHS Trust (RNOH) is the largest orthopaedic hospital in the UK and a global leader in our field. We provide a dynamic working environment where we support frontline staff to implement improvements so that we can realise our vision of being a world leading neuro-musculoskeletal hospital providing the best patient care and staff experience in the NHS, delivering world leading research, and offering a strong foundation of education, training and career progression. Our dedicated staff come from diverse backgrounds, and our patients benefit from the wide range of experience they bring to the trust. RNOH brings unrivalled expertise together in one place allowing us to deliver some of the world's most complex and innovative care to our patients. RNOH is rated good by the CQC and covers two sites, one in central London and one in Stanmore - which has recently opened The Stanmore Building, a new, state-of-the-art inpatient facility. For more information, please access the following link :

Job description

Job responsibilities

Knowledge of national and European data protection laws and practices and an in depth understanding of the GDPR

  • To maintain good knowledge of data protection law and practices and how they apply to the Trust. To assist and monitor compliance with the GDPR and Trust policies
  • Managing Freedom of Information requests received by the Trust in accordance with corporate and legislative requirement; including logging, reviewing and collecting information and providing final responses to requestors
  • Demonstrable ability to fulfil his or her tasks with excellent administration skills and attention to detail. One will be required to be a minute taker at the Information Quality & Sub-committee.
  • Sufficient understanding of the processing operations carried out in the NHS, as well as the information systems and data security and data protection needs of the Trust
  • To execute the Trust work plan and departmental actions in place for the Trust to maintain compliance with GDPR
  • To collate evidence for demonstrating compliance with the NHS Data Security and Protection Toolkit online self-assessment.
  • To provide advice to the Trust and its employees on compliance obligations
  • To advise and undertake data protection impact assessments and to monitor their performance

To provide support, advice and assurance of compliance to the Information Quality & Governance sub-committee and Trusts Executive Directors when required.

To support programmes of work from inception to ensure that data protection is addressed by default and in the design of new systems and information processes

  • To ensure that the teams within departments are appropriately trained and maintain their expertise and draft documentation / templates and processes in line with legislation
  • The Support Lead will ensure that appropriate confidentiality is maintained in the performance of his or her tasks and to be the first point of contact within the Trust internally for all data protection matters. In performing his or her tasks as the Support Lead must ensure that their responsibilities are not influenced in any way, and should a potential conflict of interest arise to report this to the Data Protection Officer, Information Governance Manager & Deputy SIRO.
  • To develop or advise senior management on the development and establishment of policies, procedures and other measures to ensure compliance with GDPR, including but not limited to :

    • Records of processing activities

    Data protection by design and default

    Data protection impact assessment

    Fair processing

  • To develop and maintain compliance reporting for GDPR to be prepared for the Information Quality & Governance sub-committee
  • To support programmes and initiatives that involve the development of new or innovative information processes on the need for data protection impact assessment.
  • To deliver or support Data Quality audits across the Trust to be prepared for assurance checks and perform spot check audits of high risk systems. To develop / maintain annual due diligent audit of all supplier contracts
  • Provision of specialist advise to the Trust on compliance obligations
  • Provision of advice and maintain risk logs for projects and business change initiatives on when data protection impact assessment is required
  • To take account of the risks associated with processing in the performance of his or her tasks
  • Development of materials to support staff in conducting data protection impact assessment, and implanting knowledge

    • Maintaining and monitoring the Trusts information and data flow mapping

    Person Specification

    Qualifications

    Essential

  • Educated to degree level in a relevant subject, or equivalent demonstrable experience.
  • Specialist Data Protection qualification

    • Desirable

  • ISEB qualification relating to IG initiatives.
  • PRINCE 2 project management qualification

    • Experience

    Essential

  • Evidence of on-going personal development and post qualification experience
  • Experience of interpreting information legislation and guidance into organisational best practice
  • Experience and evidence of delivering high standards of performance to achieve national and local targets
  • Experience of working effectively in collaboration with other agencies
  • Understanding of security and confidentiality rules, ideally within the public sector
  • Working knowledge on legal and professional obligations with regards to NHS information governance
  • Evidence of successfully handling sensitive situations effectively and confidentially
  • A clear knowledge of data protection trends

    • Desirable

  • Proven leadership of Data Protection or Information Governance.
  • High level of political astuteness and sensitivity - in particular awareness of social, political, financial and business issues affecting the NHS
  • Experience of handling confidential and sensitive information
  • Delivery of a project involving different staff groups
  • Evidence of previous compliance, change or, project management responsibility

    • Skills

    Essential

  • Verbally explain information / statistical concepts
  • Team player, co-operate with other staff to achieve results
  • Ability to forge effective relationships with a wide range of disparate individuals and organisations and to work effectively in a multi-disciplinary environment
  • A track record of achieving results through team working and influence

    • Desirable

  • Ability to influence in difficult circumstances, gaining support for ideas though persuasion and consensus building