- Lead the development, implementation and continual improvement of the Trust's Information Governance Framework.
- Provide strategic leadership on all aspects of information governance, data protection and information risk management.
- Develop and maintain IG policies, procedures and standards in line with NHS and regulatory requirements.
- Provide regular assurance reports to Trust Boards, Committees and Executive Leadership Teams.
Data Protection Officer Duties
- Fulfil the statutory responsibilities of the Data Protection Officer under UK GDPR.
- Monitor organisational compliance with UK GDPR, Data Protection Act and associated legislation.
- Provide independent advice on data protection obligations and privacy requirements.
- Act as the primary contact point for the Information Commissioner's Office (ICO).
- Oversee Data Protection Impact Assessments (DPIAs) and privacy risk assessments.
- Manage and advise on personal data breaches, investigations and regulatory reporting.
Regulatory Compliance
- Lead the Trust's annual Data Security and Protection Toolkit (DSPT) submission.
- Ensure compliance with NHS England information governance standards.
- Coordinate responses to audits, inspections and external reviews.
- Maintain oversight of compliance with Records Management Code of Practice requirements.
