Data Protection Governance Compliance Officer in Doncaster

We are seeking an experienced and proactive Compliance Officer specialising in Data Protection Governance to support and strengthen our data protection, privacy, and information governance framework across our UK food manufacturing operations. The successful candidate will ensure compliance with UK GDPR, the Data Protection Act 2018, and related regulatory obligations while supporting a culture of responsible data handling across our UK operations and ensure we are achieving ISO27001 accreditation. This role requires a practical understanding of governance within a regulated manufacturing environment, including management of employee, supplier, customer, and operational data.

Key Responsibilities

• Assist with the development, maintenance and protection of our organisation's data protection and information governance framework.
• Monitor compliance with UK GDPR, Data Protection Act 2018, PECR, and relevant industry standards.
• Maintain and review data protection policies, procedures, records of processing activities (ROPA), and governance controls making recommendations for improvement on a cyclic basis.
• Conduct data protection impact assessments (DPIAs) and legitimate interest assessments (LIAs) to be approved by the Head of compliance.
• Support privacy-by-design initiatives across business projects and operational changes.
• Manage data retention schedules and oversee secure disposal practices.
• Become SME for the organisation's PECR activities alongside the Head of HR & Finance Director.
• Conduct regular compliance audits and risk assessments across functions.
• Identify gaps in compliance controls and recommend corrective actions.
• Investigate and manage data incidents, breaches, and near misses, including ICO reporting where required.
• Track regulatory developments and provide guidance on emerging privacy and governance risks.
• Promote a culture of accountability and data governance throughout the business.
• Support internal and external audits relating to compliance and information governance.
• Review supplier contracts and data processing agreements.
• Conduct due diligence on third-party processors and service providers.
• Monitor international data transfers and associated safeguards.
• Prepare compliance reports and management updates for senior leadership.
• Maintain accurate compliance records and evidence for regulatory inspections.
• Support responses to subject access requests (SARs), data deletion requests, and other data subject rights.

Essential Skills & Experience

• Proven experience in a data protection, compliance, governance, or privacy role.
• Strong working knowledge of UK GDPR and the Data Protection Act 2018.
• Experience managing compliance within a manufacturing, food production, FMCG, or regulated environment.
• Understanding of information governance principles and risk management practices.
• Experience conducting audits, DPIAs, and compliance investigations.
• Excellent organisational, analytical, and communication skills.
• Ability to engage effectively with operational and corporate stakeholders.

Desirable Qualifications & Experience

• Experience working with ISO 27001, BRCGS, or other governance frameworks.
• Familiarity with cybersecurity and information security controls; however, full training will be given on Data Protection Officer duties and technical controls.
• Knowledge of supplier governance and contract compliance.

Personal Attributes

• High level of integrity and professionalism.
• Detail-oriented with strong problem-solving capability.
• Confident communicator with the ability to influence stakeholders.
• Pragmatic and commercially aware approach to compliance.
• Able to manage multiple priorities in a fast-paced manufacturing environment.

Benefits

• 3% pension after probation.
• 28 days holiday.
• Full training provided.