Are you an experienced data protection professional looking for your next career opportunity? GMP are seeking a Data Protection Officer to lead and advise on data protection and individuals rights, acting as the subject matter expert across the Force.
The Data Protection Officer must be in commuting distance to Manchester, will have the option to work an agile workstyle and will be based at the Force Headquarters.
Reporting directly to GMP’s Head of Information Management, you will have the opportunity to work for the second largest police force in England, covering almost 500 square miles and responsible for keeping approximately 2.8 million people safe.
This is a unique opportunity for an individual who enjoys a varied and challenging environment and has the gravitas to lead and the experience to deliver a leading data protection function. We are looking for someone who can support the organisation with compliance, but also someone who truly understands the benefits to both the Force and the Data Subject of the effective and secure processing of information.
If you want a role where you can make a real positive impact to the public, then this could be the role for you.
The Candidate:
This is an exciting time to join Greater Manchester Police. You will relish the opportunity to work with like-minded colleagues in adding real value to GMP’s journey in realising its vast latent potential.
We are looking for someone with the technical knowledge of data protection legislation, but also practical experience of working in large scale organisations which are complex. You will have extensive experience in an equivalent role as a Data Protection Officer or information governance professional. The ability to work with colleagues across the organisation and provide great exposure at all levels is essential.
Aim:
As a Police Force, GMP process a significant amount of personal information – the management of this information is critical to operational policing and maintaining public trust and confidence. The Data Protection Officer will support GMP, the Data Controller, in all matters of data protection compliance, providing expert advice and recommendations.
The Data Protection Officer will also monitor internal compliance and inform and advise on GMP’s obligations. The Data Protection Officer will be the main point of contact for data subjects and the Information Commissioners Office.
Main responsibilities:
- Support and advise the Chief Constable, as Data Controller, and the Senior Information Risk Owner (SIRO) regarding their obligations in complying with the Data Protection Act 2018, General Data Protection Regulation (GDPR) and other associated data protection legislation.
- Deliver independent, expert advice and recommendations across the Force on data protection legislation.
- Influence and advise across all levels of the organisation and employees in relation to operational matters, policy, procedure to ensure compliance.
- Monitor internal compliance with data protection laws and internal data protection policies.
- Develop and maintain a programme of audit to advise on GMP’s obligations and areas of risk.
- Work with Chief Officers and other Senior Leaders to develop remediation plans arising from activities relating to personal data.
- Represent GMP and build effective relationships with stakeholders, partners and governing bodies.
- Represent GMP as the lead contact for the ICO, data subjects in all matters relating to the protection of personal data, internal departments and the wider public on information governance matters.
- Review, provide advice and sign off relevant governance material and documentation, as required.
- Monitor, review and advise on the undertaking of data protection impact assessments for new or alternative processing activities are proposed, enabling the development of solutions which meet compliance and organisational objectives.
- Keep professional knowledge and skill up to date with data protection laws and practices as required to maintain expert level.
- Lead on GMP’s approach to raising awareness of data protection issues, training Officers and Staff and conducting audit around data protection matters.
- Develop appropriate policy and guidance in order to embed data protection matters within the culture of the organisation.
- Manage information risk accordingly in line with GMP policy and procedure, having regard to the nature, scope, context and purpose of the processing of personal data.
- Maintain a good understanding of GMP’s information risk and develop mitigation plans around processing activity.
- Ensure breach notifications, complaints, investigations and all matters relating to the processing of personal data are facilitated.
- Represent the Force at relevant local, regional and national meetings in order to share best practice and be the point of contact.