Senior Data - Belfast, United Kingdom - Radius Housing
Description
Job Title :
Senior Data and Governance Officer
Department :
Corporate Services Directorate
Responsible to:
HR Manager
Job Purpose :
To manage and mitigate the Association's data protection compliance risk, recommending and implementing strategic improvements to policy, systems and reporting, including continuous improvement.
The postholder will also support the Corporate Services Directorate, as well as other colleagues across the Association to assist in the delivery of the highest standards of service and compliance, in order to meet its obligations by developing, leading, monitoring and administering a structured data and information governance framework.
Key Duties and Responsibilities
1.0 Best Practice
1.1 To be accountable for enabling the organisation to comply with all relevant data protection legislation, and in particular equality and GDPR, in line with best practice standards.
1.2 Foster and embed a willing culture of information compliance in order to deliver theAssociation's commitment to data protection and equality of opportunity.
1.3 Responsible for informing and advising the organisation and its employees about their obligations to comply with relevant legislation.
1.5 Review and report on the organisation's compliance against its policies.
1.6 Influence policies and advise on required changes.
1.7 Manage correspondence and communication.
2.0 Data Management
2.1 Lead on the management of personal data.
2.2 Review and manage quality and content of data held.
2.3 Maintain information systems to ensure information is dependable and robust.
2.4 Deliver an effective and compliant records management service, as part of a modern and customer focused service and foster a culture of this across the
Association.
2.6 Working closely with departmental champions to undertake reviews of privacy issues in activities or projects.
2.7 Provide reports and information to the Board, its committees, and the senior leadership team on the organisation's data protection activities.
2.8 Advise on, maintain and develop the organisation's information Asset Register.2.9 Maintain the Association's Retention and Disposal Schedule and Privacy Notices.
2.10 Produce and deliver a programme of information governance education and training to staff across the organisation on Data Protection requirements.
3.0 Regulatory, Legal and Internal Audit Compliance and Risk Management
3.1 Assist with the development of strategies and subsequent implementation of an organisation wide GDPR and data privacy compliance programme.
3.2 Embed structures and processes to ensure risks and compliance issues are identified, escalated, monitored and mitigated effectively.3.3 Monitor compliance with all relevant data protection and equality legislation through undertaking a programme of internal audits.
3.4 Lead necessary investigations and responses for all potential and actual data security breaches and potential and actual breaches of confidentiality.
3.5 Advise on the need for data protection and equality impact assessments to ensure privacy is embedded into the design of new services and business changes, involving the collection or use of personal data.
3.6 Review all proposed data sharing arrangements with third parties, ensuring compliance with all relevant regulations.3.7 Act as a primary point of contact and liaison between the Association and the
ICO/ECNI where necessary.
3.8 Ensure new starts undertake timely awareness training in respect of information governance and equality and that all staff receive refresher training.
3.9 Plan and carry out a programme of inspections across Radius' offices and schemes specifically on Data Protection and equality compliance.
4.0 Quality and Continuous Improvement
4.1 Support additional compliance activities across the Association to include ISO9001 activities as required, including participating in external quality audits in support of ISO certification.
4.2 Support the management of QMS documentation.4.3 Develop and implement information governance standards and support compliance with current legislation, including providing advice on information issues.
4.4 Promote a Data Governance Strategy and supporting Policies, ensuring buy-in across a large scale and diverse organisation.
4.5 Maintain a record of all data protection and equality policies and procedures as well as acting as the central point for coordinating updates and amendments.
4.6 Participate in the research, development and review of policies, processes and business systems ensuring the knowledge and learning is shared within the team for continuous development and to drive improvements.
4.7 Report on quality metrics, reviewing trend analysis and flagging issues to management and proposing preventative actions in order to reduce future risk to the Association.
