Data Protection Business Partner

If you share our values and are excited about making a significant impact at Riverside, please ensure you attach a current CV and covering letter. At Riverside we recruit to potential not just on skills and experience, so we encourage you to apply even if you don't meet all the essential criteria on the job description.

The difference you will make as a Data Protection Business Partner:

• Partner with business functions to provide expert administrative support and guidance to the Group to support compliance with data protection and privacy under the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018 (DPA 2018), Privacy & Electronic Communication Regulations 2003 and associated legislation.
• Report directly to the Lead Data Protection Business Partner, who will provide advice and guidance and assist in training and development.

About you:

• Support the Group Head of Data Protection and Lead Data Protection Business Partner in the execution of their duties.
• Administer and manage all statutory records held by the Data Protection Team relating to data protection, and associated legislation, including mailboxes.
• Administer all data breaches and information rights requests received including retrieving data, reviewing, redacting and applying exemptions on behalf of the Group Head of Data Protection and within strict statutory deadlines.

Working with us, you’ll enjoy:

• Flexible working options available.
• Investment in your learning, personal development and technology.
• A wide range of benefits.

Diversity and Inclusion at Riverside:

We are inclusive. At Riverside, we value diversity in all its forms. We foster a workplace where all individuals are respected, empowered, and heard. Our commitment to inclusivity drives our success and enriches the lives of our customers and colleagues. Riverside is a Disability Confident Employer and operates a Guaranteed Interview Scheme for any applicant who declares they have a disability. If the applicant meets the minimum requirements for the role (as set out in the role profile and/or person specification) they will be guaranteed an interview. This role also falls under our Ethnic Diversity guaranteed interview scheme. If you are Ethnically Diverse and demonstrate you meet the minimum criteria for the role you will be guaranteed an interview.

If required, applications may close before the deadline, so please apply early to avoid disappointment.

Role Profile Person specification:

• Champion information rights, providing clear and coherent guidance to colleagues, customers, partners and suppliers.
• Provide support and guidance for the data protection impact assessments (DPIAs) process within the Group.
• Act as first point of contact within the Group for queries relating to data protection and associated legislation.
• Provide practical second line advice, guidance and support to all relevant areas to the Group.
• Support the review of relevant contracts (data processors, information sharing agreements, etc) for the Group to ensure data protection compliance.
• Assist in the preparation of papers for the relevant committee/board meetings.
• Produce relevant management information for the Group, including breach reporting, key risk reporting and compliance with statutory timeframes.
• Prepare the renewal for relevant registration/subscriptions e.g., Information Commissioners Office.
• Plan, coordinate and develop regular, timely and relevant internal data privacy communications via appropriate channels.
• Support business functions in developing control frameworks that deliver compliance with the DPA and FoIA.
• Assist in maintaining the register of processing activity for the Group.
• Provide input into the testing of business functions compliance with Policy and processes – thematic reviews, conformance and assurance programs and audit.
• Promote continuous improvement in compliance with all DP, FoIA and compliance matters.
• Work collaboratively with colleagues who have other Information Governance responsibilities.

Cross Team Working:

• Assist in driving cohesion between the DP team and other functions in the Group Information Governance function.
• Support the Group Head of Data Protection to ensure that the team acts as a true second line of defence.
• Ensure excellent service for all colleagues and customers when providing advice, support and lessons learnt.

Other:

• Comply fully with all Group policies and procedures including the standing orders and financial regulations.
• Comply with and champion the Equal Opportunities and Diversity Policy.
• Comply with the Data Protection Act (all employees will not disclose or make use of for their private advantage any information held on record which is not available to the public).
• Carry out any other reasonable duties as required.

Knowledge, Skills and Experience:

• Demonstrable experience in a data protection/information governance focussed role.
• Understanding of Data Protection and other associated legislation.
• Good level of IT skills and literacy.
• Proficiency in Microsoft Applications (Word, Excel and PowerPoint).
• Excellent written and verbal communication skills.
• Demonstrate self-motivation.
• Have good analytical skills with attention to detail.
• Ability to work under pressure and meet deadlines.
• Ability to prioritise workload and demonstrate good organisational skills.
• Be proactive in setting goals and achieving deadlines.
• Demonstrable experience of working within a highly regulated customer focused sector.

About Us:

Riverside is one of the UK’s leading not-for-profit social housing and regeneration organisations, owning or managing around 75,000 homes from Irvine to Kent. We are a leading provider of supported housing services, particularly for those affected by homelessness, and our track record of transforming lives and revitalising neighbourhoods dates back over 90 years. We have plans to build over 15,000 affordable homes over the next decade.