Job Title: Data Protection compliance Manager (12 month fixed term)
Salary: £38,000 - £43,000 per annum
Location: The Old Police House, Hyde Park, London W2
Instructions to Candidates
Confidential Application for Employment
The Royal Parks (TRP) is committed to the fair treatment of its staff, potential staff or users of its services. Recruitment and selection decisions are made purely on merit as the result of fair and open competition. We are committed to equality of opportunity for the advancement of employees including promotion and training and do not discriminate against any person because of gender, race, ethnic or national origin, religion, sexual orientation, marital status or responsibility for dependants, age, physical/mental disability or offending background. By applying you confirm that the information given is, to the best of your knowledge and belief, true and accurate. If you have given misleading information, this will be sufficient grounds for terminating your employment.
The closing date for this application is Sunday, 7th January 2018.
Position applied for: / Data Protection compliance ManagerVacancy reference: / DPCM1217
How to apply
1. Please provide your CV and a personal statement highlighting your skills, qualities and experience. The criteria relevant to the post you are applying for are listed in the Person Specification on the job description. Please give specific examples about a time either at work, volunteering or in your personal life that demonstrates how you meet the criteria required to do the job. You must ensure that your answers provide clear evidence of the given criteria.
2. Please complete the diversity form and return it with your application. It will be detached from the rest of your application by the HR department.
Ensure you have completed:
Your CVYour personal statement
Your completed diversity form
Send to with the job title as the subject.
DIVERSITY FORM (this will be detached from your application by the HR Dept)
Title:
Forename(s):
Surname:
Date Of Birth:
Male Female Non-binary Prefer not to say
If you prefer your own term, please specify here:
How did you learn of this vacancy? Please select:The Royal Parks websiteThe GuardianThird SectorCharity PeopleCharity JobDiceInformation and Records Management SocietyOther internet site (please specify below)Recruitment Agency (please specify below)Internal recommendationOther (please specify below)
If ‘Other internet site’, ‘Recruitment Agency’ or ‘Other’, please specify here:
Section B: Disability
The Royal Parks wish to encourage suitably qualified people with disabilities to apply for jobs. All information will be treated in strictest confidence.Do you consider that you have a disability? Yes No Prefer not to say
What is the nature of your disability?
Please give details of any special needs or requirements that you may need us to make if you are invited to interview/offered employment:
Section C: Religion or Belief and Sexual Orientation
Which religion or belief do you most associate with? Please tick one box only.No religion or belief Buddhist Christian Hindu Jewish
Muslim Sikh Any other religion or belief Prefer not to say
Which sexual orientation do you most associate with? Please tick one box only.
Bisexual Gay Man Gay Woman/Lesbian
Heterosexual/straight Other Prefer not to say
www.royalparks.org.uk
Section D: National Identity
Which National Identity do you most identify with? Please tick one box only.
British or Mixed British English Northern Irish ScottishWelsh Other (please specify if you wish) Prefer not to say
Section E: Ethnic Identity
Which Ethnic Background do you most identify with? Please tick one box only.
ASIAN OR ASIAN BRITISH:
Bangladeshi Indian Pakistani Any Other Asian Background (please specify if you wish)
BLACK OR BLACK BRITISH:African Caribbean Any Other Black Background (please specify if you wish)
CHINESE:
Any Chinese Background (please specify if you wish)
MIXED ETHNIC BACKGROUND:
Mixed White and Asian Mixed White and Black African Mixed White and Black Caribbean
Any Other Mixed Background (please specify if you wish)
WHITE:
Any White Background (please specify if you wish)
OTHER ETHNIC BACKGROUND:
Any Other Ethnic Background (please specify if you wish)
Prefer not to say
EMPLOYMENT HISTORY
Current salary and benefits or salary when last employed: / £ / Notice required:DATA PROTECTION COMPLIANCE MANAGER
JOB DESCRIPTION
JOB TITLE: DATA PROTECTION COMPLIANCE MANAGER
BASED: The Old Police House, Hyde Park, London, W2 2UH
SALARY: £38,000 - £43,000 per annum
TERMS: 12 month fixed-term contract on a full time basis
KEY RELATIONSHIPS: Records Manager, Fundraising Data Manager
LIAISON WITH: You will be a key member of the Information Services and Technology team, working closely with the Records Manager and Fundraising Data Manager. You will work with all teams across the charity that process personal data, particularly the Development & Learning Directorate, the Communications, Commercial & Events Directorate and individual Park Offices.
JOB PURPOSE:
The Royal Parks is a new charity that was set up in March 2017 to manage and fundraise for London’s eight Royal Parks. A data protection expert with proven project management experience, you will lead the organisation towards GDPR compliance. You will deliver a 12 month project to assess and overhaul policies and procedures, train staff and deliver a programme of change.
The Data Protection Compliance Manager is key to many important areas of work within the Royal Parks including the operational management of the Parks, stakeholder liaisons, income generating activities and charitable activities such as fundraising, marketing and volunteer management.
Working closely and collaboratively across all Directorates and Park Offices you will carefully audit and document any current data processing across The Royal Parks and its trading subsidiaries. You will project manage the development and implementation of new data policies and procedures that ensure compliance with GDPR whilst making the best use of personal data within the organisation.
You will be confident in your ability to work alongside and influence decision making at a senior level and will have the ability to deliver internal training on data protection and GDPR to all staff across the organisation, contributing to organisational and cultural change.
STRATEGIC OBJECTIVES:
· Lead The Royal Parks towards GDPR compliance
· Audit all personal data held and used by the organisation
· Review and update all data protection policies, procedures and 3rd party processing arrangements
· Train staff across the organisation in the use of the new and compliant data protection practices
RESPONSIBILITIES:
Lead The Royal Parks towards GDPR compliance
· Report directly to the Data Protection Officer, currently the Head of Information Technology
· Work collaboratively with staff of all levels across all Directorates and Park Offices
· Use enthusiasm, expertise and own initiative to create and deliver a project plan to lead The Royal Parks towards GDPR compliance
Audit all personal data held and used by the organisation
· Conduct a thorough internal audit of all current data storage within the Royal Parks
· Audit all data processing activities, both internal and external, including the full life cycle of collection, storage, usage, retention and destruction
· Identify any future requirements that the Royal Parks may have for processing personal data
Review and update all data protection policies, procedures and 3rd party processing arrangements
· Combine own data protection expertise with advice from external legal support where necessary
· Seek to make the best use of personal data within the organisation
· Provide recommendations for changes to processing activities to comply with GDPR legislation
· The recommendations are likely to be in the format of a range of options from – do minimum to remain compliant to the maximum we could do. This links to the fundraising strategy for the organisation, which is currently under development
· Define and document new policies, procedures and working practices for processing personal data
· Work with the Information Services and Technology team to update policies on data security and breech management
Train staff across the organisation in the use of the new and compliant data protection practices
· Promote data protection awareness and understanding across The Royal Parks by informing and training staff and contributing to organisational and cultural change
· Manage the implementation of new data protection procedures and policies
· Deliver a comprehensive and organisation wide training programme
· Advise staff on all aspects of data processing: collection, storage, usage, retention and destruction
· Advise on data protection, including impact assessments, risk mitigation, data transfers and 3rd party processing
PERSON SPECIFICATION:
Qualifications
· Ideally will have some of the following:Data Protection Certification (EU/GDPR/P, CIPP/E)
Security/Compliance Auditing (ISO 27001)
Project Management (Prince 2)
Experience
· Extensive data protection experience· Thorough understanding of DPA, PECR and GDPR
· Auditing and documenting data processing activities
· Project management
· Defining new policies, procedures and working practices
· Influencing organisational change, advising and training staff
· Previous voluntary sector experience, or understanding of fundraising, marketing, and volunteer management
Skills
· Pro-active, adaptable approach, able to work in a changing environment· Ability to work alongside and influence decision making at a senior level
· Gain commitment from senior management, key stakeholders and staff
· Work with range of disciplines including legal, charitable, operational
· Work diligently and deliver results to tight deadlines
· Thorough and accurate auditing & documenting
· Strong communication skills, inspire and educate others
· Ability to balance risk with needs and identify pragmatic and effective solutions
Additional Requirements
· Successful candidates must meet security requirements before appointment, or be willing to undergo the clearance process. The level needed is Security Clearance (SC).www.royalparks.org.uk