Data Protection Officer
Hybrid (once a week in Cardiff)
Circa £50,000 + Benefits
About Us
We are a leading provider of family services, committed to delivering high-quality support and care for families and individuals. Our mission is to ensure the protection and well-being of our clients, and data protection is a critical aspect of this. As we continue to grow, we are seeking a skilled Data Protection Officer (DPO) to join our team and lead our efforts in ensuring compliance with data protection regulations.
The Role
As the Data Protection Officer (DPO), you will be responsible for overseeing all aspects of data protection within the organisation, ensuring compliance with GDPR and other relevant regulations. You will play a key role in managing data risks and protecting the privacy of the personal data we handle. This hybrid role requires a weekly presence in our Cardiff office, with the flexibility to work remotely for the remainder of the week.
Key Responsibilities
* Ensure GDPR Compliance: Oversee the organisation's compliance with the General Data Protection Regulation (GDPR) and other relevant data protection laws.
* Policy Development: Develop, maintain, and implement robust data protection policies and procedures.
* Data Protection Audits: Conduct regular audits and assessments to ensure compliance with internal and external data protection standards.
* Data Subject Requests: Manage and respond to requests from individuals regarding their data rights, including Subject Access Requests (SARs).
* Incident Management: Lead the response to any data breaches or incidents, conducting investigations and reporting as necessary.
* Training & Awareness: Provide data protection training and raise awareness across the organisation to ensure all staff understand their responsibilities.
* Data Processing Agreements: Review and negotiate data processing agreements with third-party suppliers and clients.
* Liaison with Regulatory Authorities: Act as the main point of contact with the Information Commissioner’s Office (ICO) and other regulatory bodies.
* Advisory Role: Provide expert advice to senior management on data protection risks and compliance issues.
Key Requirements
* Experience: Proven experience as a Data Protection Officer, or in a similar role, with a deep understanding of GDPR and UK data protection legislation.
* Qualifications: A recognised data protection qualification (e.g., CIPP/E, CIPM, or equivalent) is highly desirable.
* Communication Skills: Excellent written and verbal communication skills, with the ability to explain complex data protection issues to a non-specialist audience.
* Problem-Solving: Strong analytical and problem-solving skills, with a proactive approach to identifying and mitigating data protection risks.
* Attention to Detail: High levels of accuracy and attention to detail, especially in policy development and compliance monitoring.
* Team Player: Ability to work collaboratively across departments, providing guidance and training to ensure best practices.
Benefits
* Competitive salary of circa £50,000.
* Hybrid working model with flexible hours.
* 28 days annual leave, plus bank holidays
* Private Health Insurance
* Ongoing professional development and training opportunities.