Data Security & Protection Lead

Torbay and South Devon NHS Foundation Trust
£35,392 to £42,618 a year per annum
Closing date
6 Jun 2023

View more

Other Health Profession
Band 6
Contract Type
Full Time
Data Security and Protection Lead (Information Governance)

We are looking an enthusiastic, self motivated, performance driven individual, with a strong background in Information Governance and Data Protection, preferably in the health and social care sector. This is a full time, on site post, with the potential for some flexible working.

The purpose of this key role is to provide Torbay and South Devon NHS Foundation Trust (the Trust) with leadership and guidance, to ensure that the Trust complies with the requirements included in the National Programme of Information Governance. This includes the General Data Protection Regulations (GDPR), Data Protection Act 2018, Freedom of Information Act 2000, Caldicott Guidelines and Corporate Record Management.

This role will be a prime source of expert advice and policy management, to create and maintain high level awareness and understanding of the importance of Data Protection, supporting the Trust to meet its statutory and legal obligations.

The Trust Board and senior management team is committed to ensuring high standards of Data Protection which is a key component of the Trust's ability to deliver excellence in all aspects of patient care.

Before applying please contact Emma Davies, Trust DPO:

Main duties of the job

To provide advice, guidance and reporting of Data Protection KPIs to the Trust Data Protection Officer (DPO), contributing to the overall assurance to the Trust Board, its Executives, staff and patients

Develop internal policy and guidance to support safe data sharing

Oversee the Data Access and Disclosure Team

Review Data Sharing Agreements, project plans, DPIAs, publication scheme, and first level reviews

To act as the Trust's Liaison Officer between TSDFT and Devon & Cornwall Constabulary regarding requests for patient information

Promote Data Protection and GDPR awareness, in addition to corporate record management advice.

To ensure the Trust is compliant of the Freedom of Information Act 2000, the Environmental Information Regulations Act, and the Public Interest Disclosures Act 1998. Providing advice and guidance.

Deal with any complaints or appeals from DP/FOI applicants

Point of contact or ICO for breaches of confidentiality

To ensure the administration of the placing of alerts in relation to Advanced Directives, LPoA No Blood Products

Attend regular meetings eg TSDFT Information Governance Steering Group, Health & Social Care Records Committee and sub groups, Learning from Complaints Meetings, Clinical Governance Meetings.

To manage the Data Protection/FOI budget

Manage staff performance, annual leave, development reviews, permanent and bank staffing in line with policies.

About us

Improving services to provide better patient and service user care, and improving the working environment for trust staff.

Why work with us - 1 (

Job description

Job responsibilities

Full Vacancy details can be found on the attached Job Description/Person Specification. Please refer to your suitability to the post in your supporting information from the role requirements or person specification .

Person Specification

Qualifications and Experience


  • oEducated to degree level or equivalent specialist experience in Data Protection, Freedom of Information, and the General Data Protection Regulations
  • oExperience of Information Governance
  • oComprehensive understanding of the General Data Protection Regulations, Data Protection Act 1998 & Freedom of Information Act 2000, EIR, Caldicott Reports, and corporate record management.
  • oUnderstanding of the NHS Records Management Code of Practice and the DSPToolkit.
  • oMinimum 5 years' experience in Information governance or related field.


  • oPractitioner Certificate in Data Protection
  • oPractitioner Certificate in Freedom of Information
  • oUnderstanding of the Human Rights Act 1998, Crime & Disorder Act 1998.
  • oUnderstanding of legal issues surrounding the Woolf Report (pre-action disclosure) for personal injury claims
  • oSeveral years' experience of implementing or managing Data Protection/ FOI and Records Management in an organisation.

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab) .

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab) .

Employer details

Employer name

Torbay and South Devon NHS Foundation Trust


Belmont Court

Torbay Hospital



Any attachments will be accessible after you click to apply.


Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert