Our client, a research institute in Cambridge, is looking for a Data Protection Officer to join their team.
Reporting to the Operations Director, the Data Protection Officer (DPO) will work to identify and mitigate data protection risks, and ensure that the organisation is compliant with relevant regulation. They will also act as the main point of contact with the regulatory data protection authorities. They act as the organisation’s expert on data protection and advise and support staff on ensuring that data processing is undertaken in compliance with relevant legislation.
Duties & Responsibilities
- Provides advice and guidance to the organisation and its employees on the requirements of the GDPR, DPA and other relevant international data protection legislation
- Monitors the organisation’s compliance and briefs the Operations Director on areas of concern
- Provides advice and support to researchers when developing data protection aspects of proposals for new projects
- Provides advice and support to researchers when drafting data protection materials to support data collection
- Provides advice and support for those drafting Data Protection Impact Assessments
- Supports Legal Counsel in reviewing data sharing agreements and data protection schedules for contracts
- Acts as point of contact for data subjects and for cooperating and consulting with relevant national supervisory authorities
- Leads on organisational training and awareness raising activities for data protection issues
- Creates and maintains centralised resources and templates for use in research projects
- Supports researchers in tailoring templates to meet data protection requirements for specific processing activities
- Provides guidance to colleagues from other jurisdictions on the processing of data from European data subjects
- Keeps abreast of legislative changes, official guidance and case histories that may influence the organisation’s approach to data protection
- Liaises with internal research ethics group and other relevant bodies
The ideal candidate will have expert knowledge of data protection law and practices; a certified data protection qualification is desirable. Previous experience working in a research or professional services environment would be beneficial. Candidates must demonstrate a solid understanding and awareness of Information Security considerations. It is essential that candidates have the ability to balance commercial and compliance considerations; assessing risks and offering compliant solutions. Excellent communication skills and the ability to collaborate are essential in this role.