Data Protection Advisor

An opportunity has arisen to join the Data Protection Team supporting the North West London Integrated Care System (NWL ICS), including Imperial College Healthcare NHS Trust and NHS North West London ICB (Corporate Commissioning and Primary Care Functions - covering over 320 General Practices in North West London).

As a Data Protection Advisor, you will play a key role in supporting data protection / privacy compliance and assurance across the ICS. You will contribute to managing incidents, handling data subject rights requests, maintaining records of processing activities, reviewing data sharing and processing agreements, and supporting Data Protection Impact Assessments. You will also assist data protection assurances in research governance, including considerations under s251 for secondary use of data.

You will need a strong understanding of the UK GDPR, Data Protection Act 2018, Common Law Duty of Confidentiality, Caldicott Principles and national NHS data protection frameworks. Working within a friendly and diverse team of 11, you will help drive high standards of data protection / privacy.

The post holder will support the Data Protection Office (DPO) team in ensuring the Trust's compliance with data protection legislation, including the UK GDPR and Data Protection Act 2018. The role will provide specialist administrative and analytical support across a range of work streams, including privacy, research, risk management, and system implementation. The post holder will contribute to the maintenance of high standards of data protection and the promotion of a culture of data protection and confidentiality across the organisation.

At Imperial College Healthcare you can achieve extraordinary things with extraordinary people, working with leading clinicians pushing boundaries in patient care.

Become part of a vibrant team living our values - expert, kind, collaborative and aspirational. You'll get an experience like no other and will fast forward your career.

Benefits include career development, flexible working and wellbeing, staff recognition scheme. Make use of optional benefits including Cycle to Work, car lease schemes, season ticket loan or membership options for onsite leisure facilities.

We are committed to equal opportunities and improving the working lives of our staff and will consider applications to work flexibly, part time or job share. Please talk to us at interview.

The full job description provides an overview of the key tasks and responsibilities of the role and the person specification outlines the qualifications, skills, experience and knowledge required.

For both overviews please view the Job Description attachment with the job advert.

• English Law Degree
• Demonstrable evidence of Continuous Professional Development (CPD)
• Masters in any area of Law
• Certified Information Privacy Professional (CIPP/E)
• PRINCE2

• Experience in the NHS
• Experience in Data Protection
• Good understanding of the EU / UK General Data Protection Regulation
• Good understanding of the Common Law Duty of Confidentiality
• Good understanding of the Information Commissioners' Office
• Experience of data protection law applied to a healthcare setting
• Experience in handling incidents and managing data subjects rights requests
• Experience in delivering a Data Security & Protection Toolkit
• Experience in delivering / maintaining Records of Processing
• Experience in managing data protection risks and issues.

• Excellent Legal Research
• Ability to write policies and procedures

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Head of Data Protection & Data Protection Officer