Information Governance Lead

ADDVantage Technologies provides digital solutions for the healthcare market. We are experts in our field creating bespoke, secure, intuitive technology solutions that empower the healthcare sector.

Our standards are high, so that our solutions are robust

Join us at this exciting time in our journey and we will support you to grow your career with ADDVantage Technologies.

Do you have a passion for innovation in healthcare?

Are you able to work pragmatically and be solutions-focussed in a fast-paced, dynamic, and growing company?

Data is ADDVantage Technologies’ most valuable asset and as the Information Governance Lead, you will be responsible for maximising the use of our data whilst ensuring we are compliant with data governance legislation.

• You will act as Data Protection Officer (DPO) for ADDVantage Technologies and lead on all aspects of data governance. Working closely with all areas of the business, data subjects and the ICO, you will be first point of contact for all data protection matters, ensuring all customer and staff information is used appropriately.

• Implementing measures and a privacy governance framework to manage data use in compliance with the UK GDPR, including developing templates for data collection, advising on, and assisting with data mapping and records of data processing, and vendor management reviews.

• Working with internal stakeholders in the review of operations and projects and related data processing to ensure compliance with data privacy laws, and where necessary, advising on and monitoring data protection privacy impact assessments.

• Serving as the primary point of contact for data protection queries in the business.

• Reviewing vendor contracts (including EU standard contractual clauses) and other third-party data processing and data sharing arrangements in partnership with the organisation's Supply Chain Management and Information Security teams

• Monitoring changes to privacy laws and making recommendations for changes to the company’s privacy governance framework

• Setting standards and reviewing policies and procedures that meet the requirements under the UK GDPR

• Developing and delivering privacy training and collaborating with different teams to raise employee awareness of data privacy and security issues

• Coordinating, conducting, and monitoring data privacy audits

• Responding to and advising on data subject rights requests, including data subject access requests (DSARs) and other requests from individuals

• Working with the company’s the development team to ensure that the company's IT systems and procedures comply with all relevant data privacy and protection law, regulation, and policy (including in relation to the retention and destruction of data)

To succeed in this role, you need:

• GDPR practitioner qualification or equivalent
• Knowledge of security standards such as ISO 27001 and Cyber essentials Plus
• Extensive experience and knowledge of Information Governance practice and legislation within a health or social care setting
• Be the ‘critical friend’ to improve services, whilst appreciating internal and external pressures
• Good written and verbal communications skills
• Exceptional presentation skills with the ability to present to a range of audiences
• Strong ability to manage a large workload and prioritise as needed
• Excellent IT skills across all Microsoft applications and ability to learn internal systems used

Job Types: Full-time, Permanent

Salary: £35,000.00-£40,000.00 per year DOE