Job Description
3-Month Contract with a Local Authority
Summary
* The Information Governance Officer plays a crucial role in ensuring the Council's compliance with all relevant Information Laws, including the Data Protection Act 2018 (DPA), UK-GDPR, Freedom of Information Act 2000 (FOI), Environmental Information Regulations 2004 (EIR), and the Privacy and Electronic Communications Regulations (PECR). This position is vital for maintaining the integrity and security of information management within the Council.
Responsibilities
* Support the implementation and continuous improvement of the Council’s Information Governance Strategy.
* Promote effective information management across all services to meet statutory requirements.
* Contribute to service delivery plans and collaborate across the organization to embed IG best practices and value-for-money principles.
* Act as the Deputy Data Protection Officer (DPO) and deputy point of contact for the ICO.
* Ensure compliance of all data processing activities with UK-GDPR, DPA 2018, FOI, EIR, PECR, and other relevant regulations.
* Lead the investigation, assessment, and reporting of suspected data breaches, liaising with services and escalating matters as appropriate.
Requirements
* Experience: Minimum 5 years in Data Protection and/or Information Governance. Experience in conducting IG compliance audits, risk assessments, and investigations. Strong stakeholder management and communication skills, including engaging senior leaders. Ability to manage competing priorities and statutory deadlines (FOI, SAR, breaches).
* Qualifications: Degree or NVQ Level 6 (or equivalent). Strong knowledge of data protection legislation and associated information management standards.
Additional Information
* Working hours: 37 hours per week
* Payment: Bi-weekly
* Application deadline: 25th Feb 2026, apply ASAP.
Requirements
The role is responsible for ensuring that the Council is compliant with Information Laws; this includes but is not limited to the Data Protection Act 2018 (DPA), UK-GDPR, the Freedom of Information Act 2000 (FOI), the Environmental Information Regulations 2004 (EIR) and the Privacy and Electronic Communications Regulations (PECR).