CrawlJobs Logo

Data Protection Assistant

United Kingdom, Stockport Employment contract 30000.00 GBP / Year · Job Posted June 29, 2026
Apply Position
Job Link Share

Job Description

The Data Protection Assistant supports the Data Protection Officer (DPO) in delivering Harbour Healthcare's data protection and information governance programme across its residential and nursing care services. The post holder will assist in managing Subject Access Requests, third-party disclosure requests, deceased resident record requests, NHS Continuing Healthcare requests, data incidents, records management activities, audits, compliance monitoring and regulatory enquiries. The role acts as a key point of contact for care homes, operational teams, residents, relatives, legal representatives, healthcare professionals, regulators and external agencies, ensuring personal information is handled lawfully, securely and in accordance with UK data protection legislation and information governance requirements.

Job Responsibility

  • Coordinate and administer Subject Access Requests (SARs) and other rights requests received under UK GDPR
  • Verify identity and authority of requestors
  • Log requests and monitor statutory deadlines
  • Liaise with care homes and departments to obtain records
  • Review information received for completeness
  • Prepare disclosure packs for review and release
  • Maintain accurate audit trails and request records
  • Escalate complex requests to the DPO
  • Support the assessment and administration of third-party requests for information
  • Review evidence of authority
  • Assist with requests from various external agencies
  • Assess lawful authority for disclosure under the guidance of the DPO
  • Prepare records for disclosure and maintain disclosure logs
  • Support requests made under the Access to Health Records Act 1990
  • Verify entitlement and authority to access records
  • Coordinate retrieval of archived records
  • Prepare records for disclosure and review
  • Review records prior to disclosure
  • Identify third-party information requiring redaction
  • Apply redactions in accordance with Harbour Healthcare procedures
  • Maintain disclosure schedules and audit trails
  • Ensure information released is accurate, relevant and authorised
  • Log information governance incidents and near misses
  • Conduct initial fact-finding and evidence gathering
  • Support investigations into suspected data breaches
  • Assess potential risks to individuals
  • Track corrective and preventative actions
  • Escalate significant incidents to the DPO
  • Maintain breach and incident registers
  • Support compliance with records retention schedules
  • Assist care homes with records retrieval and archiving processes
  • Maintain records management logs and registers
  • Support archive reviews and secure destruction activities
  • Assist with records management audits
  • Provide day-to-day information governance advice to care home managers and administrators
  • Assist homes in locating, collating and securely transferring records
  • Support operational teams with data protection queries
  • Promote compliance with Harbour Healthcare policies and procedures
  • Maintain records within governance systems including Radar Healthcare and associated compliance systems
  • Monitor request and incident workflows
  • Produce reports, statistics and management information
  • Support governance meetings and reporting requirements

Requirements

  • Experience working in an administrative, compliance, governance or information management role
  • Excellent organisational and record-keeping skills
  • Strong written and verbal communication skills
  • High level of attention to detail
  • Ability to manage multiple priorities and deadlines
  • Ability to handle sensitive and confidential information appropriately
  • Proficient in Microsoft Office 365 applications
  • Ability to work independently and as part of a team
  • Experience within health or social care
  • Experience handling Subject Access Requests or disclosure requests
  • Experience investigating incidents or complaints
  • Knowledge of UK GDPR
  • Knowledge of Data Protection Act 2018
  • Knowledge of Access to Health Records Act 1990
  • Knowledge of Mental Capacity Act 2005
  • Knowledge of Caldicott Principles
  • Knowledge of Records Management and Retention
  • Ability to travel occasionally to services and meetings
  • Commitment to maintaining confidentiality and professionalism at all times
  • Willingness to undertake relevant training and professional development

Nice to have

  • Experience within health or social care
  • Experience handling Subject Access Requests or disclosure requests
  • Experience investigating incidents or complaints
  • Knowledge of UK GDPR
  • Knowledge of Data Protection Act 2018
  • Knowledge of Access to Health Records Act 1990
  • Knowledge of Mental Capacity Act 2005
  • Knowledge of Caldicott Principles
  • Knowledge of Records Management and Retention

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Data Protection Assistant

8 matching positions

UK Data Protection Officer

Through the effective day-to-day management of the UK Data Protection team, and ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
socialvalueportal.com Logo
Social Value Portal Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in Privacy and Data Protection
  • Previous DPO experience
  • Degree level educated
  • Excellent written and oral communications skills
  • The ability to prioritise work and deliver results in a pressurised environment
  • The ability to manage significant client contact
  • A demonstrated ability to develop strong relationships with internal clients
  • The ability to provide support to more senior roles
  • Self-motivated, with an ability to work with high degree of autonomy
  • The ability to work collaboratively with a broad range of constituencies
Job Responsibility
Job Responsibility
  • Enable the UK Compliance function to manage data protection risk and regulatory compliance
  • Ensure all UK entity and any applicable global controls for DP are fit for purpose and adhered to
  • Contribute to and enable the embedding of a global DP framework
  • Support the effective and consistent management of cross-border data protection activities
  • Contribute to the development and delivery of high-quality reporting
  • Ensure that the UK entities’ legal and regulatory obligations for data privacy and protection are mapped
  • Ensure that the global Horizon Scanning framework is embedded in the UK DP team’s BAU
  • Manage the UK DP team
  • Keep workloads and resource needs under close observation
  • Identify development opportunities for direct reports
  • Fulltime
Read More
Arrow Right

Data Protection Governance Specialist (FTC)

Collinson is the global, privately-owned company dedicated to helping the world ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
collinsongroup.com Logo
Collinson
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hold accredited qualifications in information governance, records management and/or data protection (BCS/CIPP), or equivalent gained in relevant experience
  • Expert knowledge of data protection and applicable legislation across multiple jurisdictions, information security controls and compliance management
  • Proven experience in advising and/or implementing data protection compliance programmes in complex environments
  • Able to explain data protection risks clearly and in non-technical language to the business and how they apply
  • Proven project management skills with a focus on delivery and results
  • A thorough understanding of best practice in risk management and compliance frameworks
  • Ability to interpret information, identify risk and provide feedback in a clear and concise manner
  • Attention to detail and able to interpret information, make sound decisions and take ownership of issues to resolution
  • Excellent interpersonal and communication skills, both written and oral
  • Organized, time management skills and an ability to work under pressure and flexibly to meet business deadlines
Job Responsibility
Job Responsibility
  • Support the maintenance and enhancement of Collinson’s data protection compliance framework, ensuring policies, standards, procedures and guidance remain accurate, practical and aligned to applicable data protection laws
  • Review, update and develop data protection policies, process documents, templates, playbooks, checklists and internal guidance materials
  • Work with the Group DPO and wider Data Protection team to improve the structure, consistency and accessibility of core data protection documentation
  • Support the embedding of data protection governance processes across the business, including clear ownership, escalation routes, approval flows and evidence of compliance
  • Assist with the implementation and ongoing improvement of the organisation’s data protection accountability framework, including alignment with recognised regulatory expectations such as the ICO Accountability Framework
  • Help maintain key data protection governance records, including policy registers, control trackers, action logs, compliance evidence and framework maturity assessments
  • Support the development of practical guidance for business stakeholders on topics such as lawful basis, transparency, retention, international transfers, DPIAs, process management, records of processing and data protection by design and by default
  • Assist in identifying gaps, inconsistencies, or outdated materials within the existing data protection framework and propose proportionate improvements
  • Work with stakeholders across various business functions to gather information and support the implementation of framework improvements
  • Support the preparation of data protection reporting materials, including progress updates, risk summaries, action plans and governance dashboards
  • Fulltime
Read More
Arrow Right

Brand Protection Assistant

You will be responsible for the operation of the Brand Protection Programme glob...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
fredperry.com Logo
Fred Perry Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Previous experience in counterfeit detection or marketplace review is not required
  • however, the ability to quickly understand and apply complex guidelines is essential
  • Strong pattern recognition and the ability to identify inconsistencies across large volumes of data
  • A proven ability to work at pace with high levels of accuracy and attention to detail
  • Sound judgement and the confidence to make decisions under ambiguity
  • A structured, methodical approach to applying rules and frameworks consistently
  • Excellent organisational skills and the ability to manage multiple priorities simultaneously
  • A high degree of autonomy, with the ability to progress work independently and escalate only where necessary
Job Responsibility
Job Responsibility
  • Review a large volume of marketplace listings and social media posts on a daily basis (usually 80,000+ per week), documenting and ensuring the removal of counterfeit and infringing listings, including identifying appropriate subjects for further action
  • Support law enforcement authorities globally in the identification of counterfeit products during seizures and raid actions
  • Instruct and manage (working with Fred Perry's legal counsel) external legal counsel in civil cases involving counterfeits and other infringements of Fred Perry's IP rights, including arranging for test purchases and other investigations/evidence collection
  • Monitor and ensuring the removal of, and take steps to minimise the damage caused by, fraudulent/scam websites
  • Maintain our Customs border notices including authorisations of official suppliers and distributors
  • Manage correspondence with Fred Perry employees, customers and external partners in relation to counterfeit products and other brand protection issues
  • Maintain an internal case management system
  • Provide regular reports on brand protection activities for internal and external stakeholders
  • Deal with programme-related invoices and payment queries
  • Provide ad hoc brand protection-related research and admin support to Fred Perry's legal counsel, including dealing with invoices and payment queries
What we offer
What we offer
  • Annual performance-related bonus
  • Competitive salary
  • Generous staff discount and regular sample sales
  • Generous pension scheme with 8.5% company contribution
  • Option to buy an extra 5 days holiday annually
  • Enhanced maternity and paternity packages
  • Life insurance
  • Private healthcare
  • Cycle to work scheme
  • Early finish Fridays
  • Parttime
Read More
Arrow Right

Counsel – Privacy & Data Protection

Mastercard’s global Commercial and New Payment Flows (CNPF) Privacy team is seek...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Qualified lawyer with a strong academic foundation and solid legal training
  • Additional certifications (e.g., IAPP) are a plus
  • Keen interest in global data privacy developments and a working knowledge of privacy and data protection frameworks (e.g., GDPR
  • familiarity with others like CCPA is helpful but can be learned on the job) with some practical experience applying them, previous inhouse or technology/privacy exposure is beneficial
  • Familiarity with financial services, payments, or digital products is preferred, or a strong willingness to learn about these sectors
  • Experience with privacy platforms such as OneTrust is an advantage
  • Curiosity about digital technologies and an interest in how they intersect privacy and data governance
  • Proactive, practical, and eager to translate legal requirements into clear, usable guidance with support from senior team members
  • Strong verbal and written communication skills, with the ability to simplify complex information for non-legal audiences
  • Highly organized, detail-oriented, and able to manage multiple tasks in a fast-paced environment
Job Responsibility
Job Responsibility
  • Provide day to day privacy support to business teams, handling product queries and operational issues, and escalating complex matters where needed
  • Support the CNPF privacy team, including Move (Mastercard Send and Cross Border Services), by preparing guidance, assessments, and initial reviews for product initiatives and market expansion
  • Advise across the broader CNPF space (including B2B payments and SME solutions) on data use, AI enabled products, data flows, and controller/processor roles in multi party ecosystems
  • Embed Privacy by Design into the product lifecycle through initial impact assessments, risk screenings, and alignment with Mastercard’s privacy and AI governance frameworks
  • Assist with responses to government data requests, RFIs, and CDD inquiries by gathering inputs, preparing drafts, and ensuring compliance with internal and legal requirements
  • Support contracting by drafting and reviewing standard data protection terms, preparing for negotiations, and escalating higher risk issues
  • Monitor regulatory developments and contribute to legal scans, providing clear, practical summaries of key impacts
  • Help build privacy awareness across the business, including developing training materials and supporting capability building efforts
  • Collaborate across teams to ensure consistent application of privacy requirements and effective follow through on actions
  • Fulltime
Read More
Arrow Right

UK Data Protection Officer

Through the effective day-to-day management of the UK Data Protection team, and ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
socialvalueportal.com Logo
Social Value Portal Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in Privacy and Data Protection
  • Previous DPO experience
  • Degree level educated
  • Excellent written and oral communications skills
  • The ability to prioritise work and deliver results in a pressurised environment, through tactical and strategic planning
  • The ability to manage significant client contact, providing expert advice which demonstrates judgement and an understanding of the business
  • A demonstrated ability to develop strong relationships with internal clients
  • The ability to provide support to more senior roles in developing key client relationships through the design of leading-edge technologies
  • Self-motivated, with an ability to work with high degree of autonomy and to be results-driven with a flexible approach to working
  • The ability to work collaboratively with a broad range of constituencies
Job Responsibility
Job Responsibility
  • Ensure that the UK entities' legal and regulatory obligations for data privacy and protection across their licensed footprint are mapped to a comprehensive set of activities, processes and controls to enable compliance
  • Ensure that the global Horizon Scanning framework is embedded in the UK DP team's BAU with appropriate contributions to formal UK Compliance reporting including to the Change Committee
  • Manage the UK DP team, tracking and monitoring the effectiveness of delivery against key activities, in line with internal SLAs, to ensure regulatory compliance
  • Keep workloads and resource needs under close observation and proactively identify problems or inhibitors and escalate where appropriate for resolution
  • Identify development opportunities for direct reports and support the team pastorally
  • Engage closely with internal stakeholders in Infosec, IT and co-sourcing relationships in Claims to support the effective and efficient delivery of DSARs, e-discovery requests, and subpoenaed information as required
  • Oversee any externally outsourced DP provision for the UK entities in jurisdictions where they operate, working with regional DPOs as required where resources are shared
  • Where appropriate and within your expertise, provide advice and guidance on technical DP matters including DP contract clauses where the contract is governed by English law
  • Retain external advisors when needed to ensure appropriate levels of specialism are enlisted when required
  • Ensure UK DP-owned actions arising from all applicable audit, assurance and testing activities are completed on time
  • Fulltime
Read More
Arrow Right

Senior Data Protection and Compliance Consultant

We are seeking a highly skilled Senior Data Protection & Compliance Consultant w...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
hso.com Logo
HSO
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5–8+ years in consulting or enterprise data governance, protection, compliance, or security roles
  • Deep, hands-on expertise with Microsoft Purview across governance, protection, and compliance solutions
  • Strong understanding of major compliance regulations (GDPR, HIPAA, ISO, NIST)
  • Experience leading client workshops, assessments, and technical implementation engagements
  • Ability to translate complex compliance obligations into practical controls for client environments
  • Strong communication, facilitation, and stakeholder-management skills
Job Responsibility
Job Responsibility
  • Guide clients in administering and optimizing the Microsoft Purview Data Map, including data scanning, classification, and cataloging of enterprise assets
  • Support clients in establishing metadata management, business glossary standards, and stewardship processes
  • Lead client engagements to implement data lineage and conduct impact analysis
  • Conduct data estate maturity assessments for clients and provide recommendations to improve governance controls
  • Advise clients on sensitive data identification and classification strategies using Purview classifiers
  • Configure and deploy sensitivity labels, label policies, and automatic labeling tailored to client business needs
  • Assist clients with Information Rights Management (IRM) and encryption configurations
  • Design and implement Data Loss Prevention (DLP) solutions across Microsoft 365 workloads
  • Support clients in defining and operationalizing retention and records management processes
  • Lead client workshops and implementations for eDiscovery (Standard & Premium)
  • Fulltime
Read More
Arrow Right

Data Protection Consultant

We are looking for an experienced Data Protection Specialist to join us on a pro...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
omya.com Logo
OVYA Production
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in Law, Business, IT, or a related field
  • Minimum 3–5 years of experience in data privacy and compliance
  • In-depth knowledge of GDPR (required)
  • familiarity with local data protection laws across European jurisdictions a plus
  • Proven experience managing data privacy projects across multiple entities or jurisdictions strongly preferred
  • Experience with DPAs, SCCs, and privacy notices
  • Relevant data protection qualification or certification required (e.g., CIPP/E, CIPM, university postgraduate program, or equivalent)
  • Strong communication and cross-functional collaboration skills
  • Proven ability to engage and align stakeholders
  • High degree of discretion and ability to handle confidential information responsibly
Job Responsibility
Job Responsibility
  • Conduct a full review and rebuild of Records of Processing Activities (RoPA) across all European entities (Art. 30 GDPR)
  • Develop a standardized, company-wide RoPA template to ensure consistency across all European jurisdictions
  • Evaluate, set up, and maintain a suitable privacy management system in coordination with the Group DPO
  • Collaborate with Legal Operations and relevant stakeholders in designing and implementing efficient, scalable data protection processes across the company, including the ongoing maintenance of RoPAs across all entities
  • Review and update all privacy notices (employees, business partners, customers, and other stakeholders)
  • Introduce data privacy clauses into company contracts and agreement templates
  • Review and update existing Data Processing Agreements (DPAs) with all relevant contractual partners
  • Revise the company's Intra-Group Data Transfer Agreement
  • Assist with other data protection related tasks as needed
  • Independently manage workload and provide regular progress updates and status reports to the Group DPO
What we offer
What we offer
  • 50% Hybrid Work Model: Flexibility to work from home and in the office, helping you achieve a healthy work-life balance
  • Ticket Restaurant: Enjoy a daily meal allowance to support your well-being
  • Flexible retribution: Kindergarten & Transport
  • 30 Labor Days of Holidays: Ample time off to relax and recharge
  • Language Lessons: Access to language lessons to help you grow both personally and professionally
  • Medical Insurance: 60% company-subsidized medical insurance for employees, with the option to extend coverage to family members at a highly competitive rate
  • Open and Modern Office Environment: Work in a collaborative, innovative, and comfortable space designed for your success
  • Fulltime
Read More
Arrow Right

Data Protection Executive

The Data Governance and Compliance team sits at the centre of the firm’s data an...
Location
Location
United Kingdom , Birmingham; Manchester; London
Salary
Salary:
Not provided
grantthornton.co.uk Logo
Grant Thornton UK LLP
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience of working in a professional environment
  • Basic understanding of UK GDPR/Data Protection Act 2018
  • Attention to detail
  • Experience supporting with data protection queries and DSAR’s
  • Ability to work independently once fully trained and take ownership of your workload
  • Proficiency in privacy & security software eg Microsoft Purview
  • Strong organizational, communication, and time management abilities
Job Responsibility
Job Responsibility
  • Act as a first point of contact for routine DP queries and support requests
  • Support with Data Subject Access Requests (DSARs), including coordinating searches, logging requests, and preparing response bundles
  • Responding to data breaches including assessing risk to the firm and preparing responses to stakeholders
  • Coordinating and facilitating responses to client/3rd party contracts, letter of engagement and privacy-related questionnaires
  • Manage the firm’s annual Copyright and Motion Picture Licence renewals
  • Support with the annual Record of Processing Activities/Information Asset Register review
  • Assist in collating and preparing data protection reports
  • Schedule meetings, coordinate agendas, issue notes/actions and follow up on actions
  • Review creation of new AI Agents and ensure the appropriate governance checks have been completed
  • Review Insider Risk Management alerts raised on the firm’s data loss prevention (DLP) and governance tool, Purview
What we offer
What we offer
  • Life cover
  • Income protection
  • Matched pension
  • Health screening
  • Dental care
  • Eye care
  • Doctor@Hand
  • Mortgage advice
  • Will writing
  • Investment accounts
  • Fulltime
Read More
Arrow Right