Data Protection Consultant

As a Data Protection Consultant at Information Governance Services (IGS), you will be one of the lead fee earners for our organisation. You will be leading on specific pieces of client work and/or on-going client projects, liaising with both external clients and the internal team.

IGS is a small data protection consultancy firm made up of subject matter experts in all things data protection and information governance. We provide specialist advice and a variety of services to our clients to ensure that they are handling their data in-line with data protection legislation. We help ensure our clients act in accordance with best industry practices and that their handling of data is as ethical as possible.

Our values are:

• Operational excellence
• Thoughtful execution
• Client-centred
• Ownership
• Empowered by Collaboration
• Inclusion

PERSON SPECIFICATION

• Have wide and deep data protection and information governance knowledge and experience.
• Experience of working in a law firm/legal consultancy or similar.
• Consider themselves, and be considered by others, as experts in specific areas of data protection and information governance.
• Confident in dealing with a variety of clients and managing very challenging queries and high-profile projects.
• To carry out role of IG Lead and carry out statutory Data Protection Officer roles for large client organisations.
• Strong motivation to seek ongoing improvements in operational processes.
• To be confident in working independently, including undertaking client meetings.
• Experience of line management of junior team members.
• Hold a shared responsibility for business development.
• Demonstrate a sense of responsibility for the reputation and effectiveness of the company.
• Draft proposals, statements of work and/or SLAs for client work.
• Actively works efficiently and effectively.

CONSULTANT – ROLE DESCRIPTION AND DUTIES

• Be a lead fee earner for IGS.
• Provide consistent, high-quality guidance and advice to clients and the Company on data protection, information law and intellectual property issues, this includes business as usual queries and business change.
• Support the Data Protection consultants in delivering training and communication to key stakeholders.
• Provide line management of junior members of the team and carry out pay reviews.
• Delegate tasks to more junior members of the team and review their work thereafter.
• Proactively provide support to team members where a need is identified and actively seek to identify these needs across the organisation.
• Participate in recruitment including the screening of potential candidates and assisting with interviews as part of a panel.
• Work with the business to effectively address issues, data protection matters and complaints (internal and external), as required.
• Maintain compliance with data protection regulations that apply to any client’s business including:
• Data Protection Act 2018
• General Data Protection Regulation (GDPR)
• Privacy and Electronic Communications Regulations (PECR)
• Data (Use and Access) Act 2025
• Any new or developing data protection regulations
• Lead and promote data protection compliance across our client’s business.
• Offer advice and guidance on data protection and information law issues.
• Assist with data subject rights requests.
• Maintain Records of Processing Documents.
• Manage and maintain company data protection policies and procedures.
• Lead data protection by design and conduct Data Protection Impact Assessments (DPIA) where appropriate.
• Act as point of contact for the regulator and any other third-party who has a data protection query.
• Manage personal data breaches.
• Conduct and deliver data protection training.
• Assist in reviewing and negotiating contracts on behalf of clients.
• Monitor third party governance risk and compliance.

Please note that the list above is not exhaustive.

The perks

• Performance related bonus.
• Private Healthcare.
• Hybrid and remote working.
• Pension scheme.
• To be part of an up-and-coming consultancy where the sky is the limit.
• Continued support to help you fulfil your potential – you’ll keep advancing your technical skills throughout your career with us.
• Enhanced Annual Leave Allowance – 23 days (plus bank holidays) plus an extra day per year of service up to a maximum of 7 additional days.

What we need from you

• An undergraduate degree (2.1 or higher), preferably in a related field.
• Masters qualification preferred, preferably in a related field.
• CIPP/E or equivalent preferred.
• Proven experience (5+ years) in data protection/IG (desirable – healthcare experience).
• Strong leadership and team management skills.
• Analytical and problem-solving skills.
• Loyalty and integrity.
• Innovation and creativity for how to grow and improve a business.
• Discipline to be able to work remotely and fulfil your duties.
• A willingness to advance the companies goals and the realisation what benefits the company will benefit your ongoing growth (both financial and wellbeing).
• Eligible to be able to apply for UK Security Clearance.
• Experience with a variety of industries and settings, including the healthcare setting.

How to apply?

Please send the following information via the button below:

• Your CV;
• A covering letter, either in the body of the email or (maximum 1 A4 page) an attached word document.

The closing date for applications is April 13th 2026, although we reserve the right to close this early.

IGS is an equal opportunities employer. We are dedicated to treating all of our employees and prospective employees fairly and with respect. We do not tolerate discrimination or harassment of any colleague or job applicant on the grounds of sex, race, ethnic origin, disability, age, gender nonconformity, marital or civil partner status, sexual orientation, religion or belief, being pregnant or on maternity leave.

The law requires us to ensure our employees have the right to work in the UK. Before commencing employment, you will be responsible for demonstrating that you have a right to work. You will therefore be required to produce for inspection original documents dependent on your circumstances.