Data Protection Officer in Bournemouth

Starting salary for this role is £53,460 (pro rata for part-time colleagues). This role sits within a well-defined pay band, offering clear progression as you grow your career at BCP. Without exception, all new starters begin at the entry point of the band, ensuring fairness and consistency across the organisation. Be part of a forward-thinking workplace where you’re supported to grow and you can truly #BeTheDifference at BCP.

Role Purpose

We are seeking a skilled and experienced Information Governance Practitioner to lead BCP Council’s Statutory Data Protection Officer (DPO) function, providing independent oversight and expert advice on compliance with the UK GDPR, the Data Protection Act 2018 and related legislation. The post holder will champion a culture of robust information governance across all services, act as primary contact with the Information Commissioner’s Office (ICO) and manage the Information Governance (IG) Team to deliver high-quality services including DPIAs, training, data breach handling, and information rights (SAR/FOI/EIR) casework.

Main Responsibilities

• Act as the council’s Data Protection Officer (DPO) as required by UK General Data Protection Regulation (GDPR) and the Data Protection Act 2018 (DPA) and lead the organisation/all directorates in data protection best practice.
• The overall responsible officer for the monitoring of the organisation’s data protection compliance, providing specialist advice, support and training to all directorates, including all employees, contractors and members (as separate data controllers) across the organisation.
• Interpret data protection legislation, horizon scanning and monitoring developments in the law, national guidance and practices relating to data protection, privacy, information governance and information requests.
• Lead in and be responsible for the development and implementation of the Information Governance Strategic Framework, working at an operational level with both internal and external stakeholders and partner organisations, setting a clear strategic vision and direction for the whole organisation.
• Develop, review and implement appropriate policies and procedures in relation to Information Governance and Records Management and lead the organisation in interpreting and embedding confidentiality of customer and employee data across services.
• Be the main point of contact for all internal and external enquiries and complaints relating to Data Protection and Information Governance matters, including the role of designated contact for the Information Commissioner’s Office (ICO).
• Represent the authority both internally and externally in committees and meetings, for example - Information Management Board and the Audit and Governance Committee.
• Work in close partnership with the Senior Leadership Team, to keep them informed and up to date with any legislation changes, and aware of any organisational risks.
• Maintain close working links with the Senior Information Risk Owner (SIRO), Services Directors, ICT Managers, and Cyber Security Officers to ensure best practice in relation to Information Governance and Data Protection and that security standards are maintained.
• Lead the Information Governance Team to ensure the organisation, all directorates, project teams, staff and elected members are provided with high-quality information governance advice and support.
• Ensure compliance and completion of Subject Access Requests and Freedom of Information requests within statutory timeframes both corporately and within services.
• Provide advice on data handling/processing in line with the principles laid down by UK GDPR, DPA, and Freedom of Information Act 2000.
• Offer advice and support in drawing up data sharing agreements and external third-party contracts.
• Support in the completion of Data Privacy Impact Assessments, considering risk implications and mitigation.
• Deal with data breaches/incidents, to minimise immediate risks and mitigate future breaches.
• Act as the escalation point for any and all breach review processes and liaise with the ICO in relation to serious data breaches or cyber attacks.
• Provide line management support to the Information Governance team, offering effective leadership, advice and guidance, monitoring performance and compliance, and other related line management responsibilities.
• Chair or contribute to relevant governance meetings, providing clear reporting, metrics and KPIs to senior leaders as appropriate.
• Represent BCP Council in regional/national IG networks and liaise with partner organisations on joint initiatives.

The Ideal Candidate

• Educated to a higher level in a relevant area e.g. law, information governance (degree level qualification or equivalent) or relevant extensive practical experience.
• Industry recognised qualification in Data Protection at Practitioner Level.
• Professional accreditation/membership of a recognised professional body.
• Experience in a similar Information Governance/Data Protection role in a large, complex, preferably local government organisation.
• In-depth knowledge of UK GDPR, Data Protection Act 2018, and ICO guidance, with ability to translate into operational practice.
• A subject matter expert in the Data Protection field with an in-depth knowledge and understanding of all relevant legislation and its operational implementation.
• Experience in developing, reviewing, delivering, managing and recommending improvements in policies, procedures, controls, monitoring systems and performance to support effective information governance and data protection.
• Experience and extensive knowledge of: Data Privacy Impact Assessments, development and review of Information Sharing Agreements; information risk and records management.
• Experience of dealing with the investigation of data breaches or incidents and the recommendation and implementation of mitigating risk factors.

Job Requirements

• Must be able to travel, using public or other forms of transport where viable, or by holding a valid UK driving licence with access to own or pool car.

Additional Information

Please note, this role is not eligible for visa sponsorship and we can only consider applicants with existing right to work in the UK.

EEO Statement

At BCP Council, inclusion is more than a promise – it’s how we work. We’re committed to providing a fully inclusive recruitment process ensuring every candidate and colleague has the support and reasonable adjustments they need to thrive. From the moment you apply, through the recruitment process and throughout your career with us, we’ll be here to listen and provide the help and support you need. It’s why we’re proud to be a Disability Confident Employer – and why you can trust that we’ll always do our best to make your experience positive and accessible. If you require any reasonable adjustments or support during the recruitment process, please let us know when you apply or contact us directly – we’re here to help.

Our Benefits

A Place to Thrive – Join BCP Council. At BCP Council, we’re not just building a workforce— we’re transforming how we recognise and reward our people. We offer attractive enhanced benefits and a new Pay and Reward package. Be the difference – Join an organisation that values you.