Board Information Governance Manager/Deputy Data Protection Officer - Information Governance B7

NHS Greater Glasgow and Clyde is one of the largest healthcare systems in the UK employing around 40,000 staff in a wide range of clinical and non‑clinical professions and job roles. We deliver acute hospital, primary, community and mental health care services to a population of over 1.15 million and a wider population of 2.2 million when our regional and national services are included.

Previous applicants need not apply!
The shift pattern for this post is: Monday – Friday

We are seeking a skilled and highly motivated Information Governance Manager/Deputy Data Protection Officer to lead a dynamic and committed Information Governance Team, contributing to the ongoing work ensuring the Board meets its legal obligations in this challenging and complex area.

NHSGGC has an ambitious 2023‑2028 Digital Strategy () and Information Governance is pivotal to supporting the delivery of transformational change.

You can learn more about the Health Board and services delivered via the .

• Lead the Information Governance team to reduce the risk of non‑compliance across the Board with regard to the Data Protection Act 2018, UK GDPR, Caldicott Principles, Access to Health Records Act 1990 and other associated legislation and policies.
• Advise on aspects of the Public Records (Scotland) Act 2011 and other relevant legislation.
• Inform, influence and direct the NHS Board and its Partner Agencies, including Police and Local Authorities, on all aspects of Information Governance.
• Conduct Data Protection Impact Assessments and develop Information Sharing Agreements.
• Apply data protection principles to research and innovation projects and the wider data processing carried out by the Board.
• Act as Deputy Data Protection Officer.
• Interpret complex legislation and litigation relating to Information Governance and provide practical guidance.
• Manage a team of Information Governance staff to support the Board’s requirements.

• Degree level or equivalent education.
• Significant experience in data protection and knowledge of Data Protection Legislation and the Caldicott Principles.
• Experience within the NHS is desirable but experience in other sectors is also encouraged.
• Excellent management, organisational and people skills, with strong interpersonal, verbal and written communication skills.
• A self‑starter who can be agile and dynamic in managing change while maintaining a patient‑centred focus.

For an informal discussion about this post, please call Stewart Whyte, Data Protection Officer on 07791 231357.

For application portal or log‑in issues, please contact the Recruitment Service in the first instance.

NHS Greater Glasgow and Clyde – NHS Scotland encourages applications from all sections of the community. We promote a culture of inclusion across the organisation and are proud of the diverse workforce we have.

By signing the Armed Forces Covenant, NHSGGC has pledged its commitment to being a Forces Friendly Employer. We support applications from across the Armed Forces Community, recognising military skills, experience and qualifications during the recruitment and selection process.

Candidates should provide original and authentic responses to all questions within the application form. The use of artificial intelligence, automated tools, or other third‑party assistance to generate, draft, or significantly modify responses is strongly discouraged. By submitting your application, you confirm that all answers are your own work, reflect your personal knowledge, skills and experience, and have not been solely produced or altered by AI or similar technologies. Failure to comply with this requirement may result in your application being withdrawn from the application process.