Job summary The Information Governance Officer is responsible for supporting the Information Governance Manager in ensuring the Information Governance (IG) agenda across the Trust is adequately and appropriately coordinated. Working with minimal supervision to deliver and receive complex information regarding IG, including (but not limited to) the requirements of the Data Protection Act 2018 (DPA), General Data Protection Regulation, which became UK law on 25th May 2018, Freedom of Information Act and other relevant legislation. Main duties of the job Proactively support the IG Management in delivering the IG Agenda by contributing to the work required to enable the Trust to achieve national requirements and legal & statutory obligations in this field About us Bedfordshire Hospitals NHS Foundation Trust provides hospital services to a growing population of around 700,000 people living across Bedfordshire and the surrounding areas across two busy hospital sites in Bedford and Luton. Both hospital sites offer key services such as A&E, Obstetrics-led Maternity and Paediatrics. You will be joining a friendly, high performing Trust committed to ensuring the health and wellbeing of staff. As one of the largest NHS Trusts in our region you will have access to a programme of high quality training and development to help you grow your career. The Trust continues to be committed to delivering the best patient care using the best clinical knowledge and technology. Our Values We not only recruit based on qualifications and experience - we recruit individuals who demonstrate the behaviours which underpin our Trusts core values. We achieve this by using values based recruitment. We are dedicated to making our recruitment practices as inclusive as possible for everyone, we are committed to promoting equality and diversity, and creating a culture that values differences. Please note that vacancies may close prior to the advertised closing date when sufficient number of applications have been received. All new staff will be subject to a probationary period covering first 6 months in post. Travel between hospital sites may be required. Please review all documents attached to ensure you familiarize yourself with all requirements of the job. Date posted 06 January 2025 Pay scheme Agenda for change Band Band 5 Salary £29,970 to £36,483 a year pa Contract Permanent Working pattern Full-time, Flexible working Reference number 418-COR3369-CW Job locations Bedford Borough Hall Cauldwell Street Bedford MK42 9AP Job description Job responsibilities RESPONSIBILITIES: Support Trust Staff to ensure the General Data Protection Regulation (GDPR) and DPA 2018 are implemented and embedded throughout the organisation Work with the Information Governance Manager and Deputy IG Manager to support a programme of work to ensure the Trust achieved the appropriate IG Standards. Ensure the Trust complies with appropriate legislation by providing and advice and guidance as well as evidence to support the Data Security & Protection Toolkit. Providing expert advice and guidance to Trust staff at all levels regarding the application of the legal framework, national and local IG Policies and Procedures. Proactively reacting to issues and situations which threaten the confidentiality of staff and patient information. Identifying and mitigating risks. Supporting the IG management in managing the Trusts response to complaints and issues relating to IG. Support the investigation of incidents which involve breaches of confidentiality Responsible for keeping a register of all Information Sharing Agreements (ISAs) and supporting line managers to ensure each agreement is and remains, fit for purpose, meets legal requirements and has a planned and plotted review date. Responsible for the completion of DPIAs ensuring all risks are identified and appropriate mitigations are in place Developing and delivering an ongoing IG Audit Programme with audits resulting in a written report of the findings and where relevant actions taken for improvement. Developing and delivering an ongoing Data Flow Mapping Review Programme and work with heads of departments to ensure their flows of data are secured. Where necessary escalate to IG line managers to ensure they are underpinned with an ISA or Data Processing Agreement. Provide data/information required for reporting purposes including reports to the Information Governance Steering Group, Trust Board and for the Trusts Annual Report. Supporting the process relating to the annual submission of the Trusts DSP Toolkit submission. Supporting the IG Manager in the reviewing and redrafting of the Trusts suite of Information Governance policies, ensuring changes are aligned with changes in legislation and best practice. Working as part of the IG Team in designing and delivering informative and targeted IG Communication. Working as part of the wider IG Team to ensure the day to day functions of the department are delivered. Provide appropriate administrative support as required. To work closely with department colleagues, support services, clinical services, operational and strategic IG leads and internal and external IG/ FOI colleagues to promote excellent IG and FOI practice, advising and supporting them in their understanding and delivery of Information Governance and FOI requirements. To support the Information Governance training programme, to include reviewing assessments and delivering Information Governance Training. The list of responsibilities above, are key primary requirements for the role, however, additional duties may be required to ensure patient and employee safety is met. Job description Job responsibilities RESPONSIBILITIES: Support Trust Staff to ensure the General Data Protection Regulation (GDPR) and DPA 2018 are implemented and embedded throughout the organisation Work with the Information Governance Manager and Deputy IG Manager to support a programme of work to ensure the Trust achieved the appropriate IG Standards. Ensure the Trust complies with appropriate legislation by providing and advice and guidance as well as evidence to support the Data Security & Protection Toolkit. Providing expert advice and guidance to Trust staff at all levels regarding the application of the legal framework, national and local IG Policies and Procedures. Proactively reacting to issues and situations which threaten the confidentiality of staff and patient information. Identifying and mitigating risks. Supporting the IG management in managing the Trusts response to complaints and issues relating to IG. Support the investigation of incidents which involve breaches of confidentiality Responsible for keeping a register of all Information Sharing Agreements (ISAs) and supporting line managers to ensure each agreement is and remains, fit for purpose, meets legal requirements and has a planned and plotted review date. Responsible for the completion of DPIAs ensuring all risks are identified and appropriate mitigations are in place Developing and delivering an ongoing IG Audit Programme with audits resulting in a written report of the findings and where relevant actions taken for improvement. Developing and delivering an ongoing Data Flow Mapping Review Programme and work with heads of departments to ensure their flows of data are secured. Where necessary escalate to IG line managers to ensure they are underpinned with an ISA or Data Processing Agreement. Provide data/information required for reporting purposes including reports to the Information Governance Steering Group, Trust Board and for the Trusts Annual Report. Supporting the process relating to the annual submission of the Trusts DSP Toolkit submission. Supporting the IG Manager in the reviewing and redrafting of the Trusts suite of Information Governance policies, ensuring changes are aligned with changes in legislation and best practice. Working as part of the IG Team in designing and delivering informative and targeted IG Communication. Working as part of the wider IG Team to ensure the day to day functions of the department are delivered. Provide appropriate administrative support as required. To work closely with department colleagues, support services, clinical services, operational and strategic IG leads and internal and external IG/ FOI colleagues to promote excellent IG and FOI practice, advising and supporting them in their understanding and delivery of Information Governance and FOI requirements. To support the Information Governance training programme, to include reviewing assessments and delivering Information Governance Training. The list of responsibilities above, are key primary requirements for the role, however, additional duties may be required to ensure patient and employee safety is met. Person Specification QUALIFICATIONS & TRAINING Essential Educated to degree level in relevant subject or equivalent level of qualification or significant experience of working at a similar level in a specialist area. Desirable IG qualification such as BCS Certificate in Data Protection or Freedom of Information or relevant experience. EXPERIENCE Essential Working and dealing with confidential matters Working knowledge of Data Protection Impact Assessments (DPIA's) Ability to identify and mitigate data protection risks Prioritising and using own initiative and Planning and Time management Knowledge of NHS systems Excellent report writing Significant experience of successfully operating in a politically sensitive environment Delivering training in a variety of settings Creating and giving presentations to varied groups Good understanding of Data Protection Act 2018, GDPR, Freedom of Information Act 2000 Ability to apply the principles of the Data Protection Act Desirable Working knowledge of Information Right Acts SKILLS & KNOWLEDGE Essential Ability to communicate with staff of all levels and from different settings. Ability to prepare and produce concise yet insightful communications for dissemination to staff and patients Good written and verbal communication skills. Excellent interpersonal skills Excellent IT Skills Excellent organisational skills and time management The ability to work methodically and prioritise with an eye for detail The ability to provide an efficient, prompt and accurate support service Excellent Customer relations Knowledge of Microsoft 365 programs Ability to work independently and as part of a team Ability to build effective working relationships at all levels within the organisation and partner organisations Ability to plan and prioritise own workload and meet deadlines Ability to understand when issues are arising and escalate them quickly and appropriately Ability to receive, understand and communicate complex information. Desirable Knowledge of information risk management Managing systems PERSONAL CHARACTERISTICS & RELATIONSHIP SKILLS Essential Ability to use own initiative & Communicate at all levels The ability to maintain and project a professional approach when dealing with members of staff, the public and external bodies professionally and sensitively and to maintain a high standard of confidentiality Ability to self motivate & work without constant supervision Flexible, approachable and diplomatic & a good team player Courteous, tactful and efficient telephone manner Must be willing to attend certified and non-certified training courses Passionate about providing an efficient friendly and confidential service at all times. Open/Reflective/Warm Enthusiastic and self-aware Creative and Flexible Team focussed Reliable, Adaptable and Dependable PHYSICAL/MENTAL EFFORT Essential Handling of highly sensitive & upsetting information will be required. Able to perform the duties of the post with reasonable aids and adaptations Some light physical work Person Specification QUALIFICATIONS & TRAINING Essential Educated to degree level in relevant subject or equivalent level of qualification or significant experience of working at a similar level in a specialist area. Desirable IG qualification such as BCS Certificate in Data Protection or Freedom of Information or relevant experience. EXPERIENCE Essential Working and dealing with confidential matters Working knowledge of Data Protection Impact Assessments (DPIA's) Ability to identify and mitigate data protection risks Prioritising and using own initiative and Planning and Time management Knowledge of NHS systems Excellent report writing Significant experience of successfully operating in a politically sensitive environment Delivering training in a variety of settings Creating and giving presentations to varied groups Good understanding of Data Protection Act 2018, GDPR, Freedom of Information Act 2000 Ability to apply the principles of the Data Protection Act Desirable Working knowledge of Information Right Acts SKILLS & KNOWLEDGE Essential Ability to communicate with staff of all levels and from different settings. Ability to prepare and produce concise yet insightful communications for dissemination to staff and patients Good written and verbal communication skills. Excellent interpersonal skills Excellent IT Skills Excellent organisational skills and time management The ability to work methodically and prioritise with an eye for detail The ability to provide an efficient, prompt and accurate support service Excellent Customer relations Knowledge of Microsoft 365 programs Ability to work independently and as part of a team Ability to build effective working relationships at all levels within the organisation and partner organisations Ability to plan and prioritise own workload and meet deadlines Ability to understand when issues are arising and escalate them quickly and appropriately Ability to receive, understand and communicate complex information. Desirable Knowledge of information risk management Managing systems PERSONAL CHARACTERISTICS & RELATIONSHIP SKILLS Essential Ability to use own initiative & Communicate at all levels The ability to maintain and project a professional approach when dealing with members of staff, the public and external bodies professionally and sensitively and to maintain a high standard of confidentiality Ability to self motivate & work without constant supervision Flexible, approachable and diplomatic & a good team player Courteous, tactful and efficient telephone manner Must be willing to attend certified and non-certified training courses Passionate about providing an efficient friendly and confidential service at all times. Open/Reflective/Warm Enthusiastic and self-aware Creative and Flexible Team focussed Reliable, Adaptable and Dependable PHYSICAL/MENTAL EFFORT Essential Handling of highly sensitive & upsetting information will be required. Able to perform the duties of the post with reasonable aids and adaptations Some light physical work Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab). From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab). Additional information Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab). From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab). Employer details Employer name Bedfordshire Hospitals NHS Foundation Trust Address Bedford Borough Hall Cauldwell Street Bedford MK42 9AP Employer's website https://www.bedfordshirehospitals.nhs.uk/working-here/ (Opens in a new tab)