This role is responsible for maintaining and updating legally required data protection records across the organisation and leading key compliance processes, including data breaches, Subject Access Requests, and STAIRS. You will develop and embed data protection policies, procedures and assessments, while working closely with the Senior Leadership Team to support the Record of Processing Activities (RoPA) data mapping exercise and establish a sustainable process to keep it updated. You will also review and deliver training, including regular in-house workshops, and identify software solutions that improve both efficiency and compliance.
Working across the business, you will ensure that an appropriate legal basis for processing data is clearly identified and applied, and collaborate with the Data Governance team to address data retention issues, putting in place robust and well-documented erasure processes. You will work with the Internal Audit Senior Specialist to develop periodic checks to test and verify that data is processed, stored and deleted in line with requirements. In addition, you will manage the Subject Access Request process end-to-end, support the identification of a suitable SAR system, review and advise on data sharing agreements, and take responsibility for managing the STAIRS process and procedures from October 2026.
#J-18808-Ljbffr