Data Protection Manager in England

Allen Lane are partnering with Barking & Dagenham Reside on their recruitment for a Data Protection Manager to join their Governance team.

Job Purpose

The Data Protection Manager will lead on all aspects of data protection, data governance, retention schedules, and data compliance across B&D Reside, ensuring that personal and organisational data is managed securely, lawfully, and in line with GDPR, UK Data Protection Act, and other relevant legislation. This role is pivotal in embedding a strong culture of privacy and compliance throughout the organisation, safeguarding resident and corporate information, and reducing risk.

Beyond core data protection duties, the position will contribute to wider corporate compliance activities, including supporting governance frameworks, risk management processes, and assurance reporting. The role will involve developing and maintaining policies, supporting internal audits, and ensuring adherence to regulatory requirements across multiple business areas. Acting as a key advisor on compliance matters, the role will work closely with internal teams and external partners to ensure B&D Reside meets its obligations under housing and other statutory requirements.

While the B&D Reside currently retains an external Data Protection Officer (DPO), this position will build internal capability and may transition into the DPO role over time. The successful candidate will play a strategic role in shaping compliance practices, delivering staff training, and supporting innovation in secure data management and governance.

Key Accountable Areas

• Data Protection & Governance

• Develop, implement, and maintain data retention schedules in line with GDPR and UK Data Protection Act.
• Monitor compliance with data protection laws and internal policies across all business units.
• Lead on Data Protection Impact Assessments and ensure fair and compliant Data Transfers between Reside and third parties.
• Act as the first point of contact and lead on data breaches, ensuring timely investigation, reporting, and remediation.
• Oversee and provide internal support to Freedom of Information (FOI), Subject Access Requests (SAR) and other data subject rights processes.
• Maintain accurate records of processing activities and ensure readiness for ICO audits.
• Draft and update data protection policies, privacy notices, and related compliance documentation.
• Ensure policies are communicated effectively and embedded across the organisation.
• Deliver training sessions and awareness campaigns for staff on data protection and privacy best practices.
• Provide guidance and support to teams on compliance requirements and best practice.
• Develop clear communication strategies for residents regarding their data rights.

• Support wider compliance activities, including governance frameworks, risk management, counter fraud, anti-money-laundering and assurance reporting.
• Conduct internal audits on data compliance and support on reporting for governance committees.
• Support on corporate contracting, including reviewing third-party contracts for data processing clauses and ensure supplier compliance.
• Assist with anti-money laundering checks and other statutory compliance requirements.
• Build capability to assume DPO responsibilities over time and liaise with external DPO and regulatory authorities.

Person Specification

• Strong working knowledge of GDPR, UK Data Protection Act, and related regulations.
• Ability to design and implement record retention schedules.
• Excellent organisational skills and attention to detail.
• Ability to effectively work as a subject matter expert.
• High integrity and discretion when handling sensitive information.
• Strong communication skills, able to explain complex compliance requirements clearly.
• Proficient in Microsoft Office and data management systems.
• Knowledge of ICO guidance and regulatory reporting requirements.
• Committed to and able to demonstrate behaviours that support Reside’s Principles.
• Professional certifications (e.g., CIPM, CISM, C-DPO or similar).
• Experience in housing or other regulated sectors.
• Knowledge of cyber security principles and privacy by design.
• Experience in risk management, governance, or internal audit.
• Ability to deliver training and awareness sessions.

Please include a cover letter along with your CV to apply for this role.

Application deadline: 12PM 19th January 2026

Seniority level: Mid-Senior level

Employment type: Full-time

Job function: Legal, Administrative, and Other

Industries: Legal Services, Housing and Community Development, Real Estate