DPO and Head of Information Governance

Psychiatry UK
Leeds
6 months ago
Applications closed

Related Jobs

View all jobs

Information Management and GDPR Lead

Data Governance Analyst

The Company

Psychiatry UK (PUK) is the nation’s leading online psychiatry service, providing assessment, diagnosis, and treatment for a range of mental health conditions. Our mission is to rise to the challenge to help solve the UK’s mental health crisis. Powered by our intelligent, A.I (Artificial Intelligence). enabled platform we provide consultant-led psychiatric care for the whole family, specialising in ADHD and Autism.


Job Summary

The DPO is an essential role supporting the Chief Finance Officer and the Executive Board to manage the Information Governance and Cyber Security Agenda across the organisation. The DPO will lead on the ongoing development and management of the organisation’s Information Governance Framework, using the Information Commissioner’s Office (ICO) Accountability Tracker, as well as the NHS Data Security and Protection Toolkit (DSPT) as a basis for this framework. Acting as the organisation’s specialist lead on all matters pertaining to Information Governance, Data Protection and Records Management, the DPO will provide expert guidance and interpretation of relevant legislation. The Head of Information Governance will develop, implement, and monitor policies, processes, and procedures to support the IG requirements to enable PUK to meet its statutory, contractual, and regulatory obligations while reducing security and information risks. The DPO will develop a training programme to ensure staff are appropriately trained on core topics within the IG Framework.


The DPO will Line Manage a team of specialist staff working across all areas within the IG Framework. This will include overseeing a team of Health Records Officers whose role is to process Subject Access Requests/Access to Health Records requests in line with statutory requirements and specialist Information Governance Officers who work to support the DPO to deliver against the IG Framework.


The DPO will be the subject matter expert on all matters relating to data protection and information governance and monitoring internal compliance. The DPO must align to the requirements as detailed under articles 37-39 of UK GDPR. The DPO will inform and advise the Executive Board on data protection obligations. The DPO will review all Data Protection Impact Assessments and support with reviewing and producing compliance documentation to evidence accountability. The DPO will be the point of contact for all data subjects including staff and patients, and be the named contact for the regulatory authority, the Information Commissioner’s Office and be named on their register of DPOs.


Key focus over the next 24 months:

  1. Implementing /embedding an agile IG framework for an agile, digital, growth business - building a culture and capability for 'first line' confidence and accountability
  2. Leading the identification and remediation of high rated data privacy and compliance risks across all areas of PUKs operation - with focus on the evolution of our digital / data platform and including the development of automated controls
  3. Support the digital transformation in the business, including the safe / complaint use of data for analytics


Main Duties and Responsibilities

  • To manage the Information Governance Agenda across the organisation.
  • To ensure legislative and regulatory compliance standards are adhered to when working on digital transformation projects, automated systems and the use of Artificial intelligence across the organisation.
  • To continually keep abreast of legislative changes and ensure the organisation is prepared should any relevant changes to legislation be implemented.
  • To ensure adherence to key Data Protection legislation and advise staff on the statutory requirements under relevant legislation.
  • To lead on the completion of the mandatory annual organisational submission to the Data Security and Protection Toolkit.
  • To lead on the ongoing development and management of the organisation’s Information Governance Framework.
  • To develop a suite of key IG and Data Protection policies, processes, and procedures to support staff.
  • To support the Learning and Development Team to develop a training plan to ensure staff are appropriately trained on a broad range of topics within the IG framework.
  • To support in the completion of Data Protection Impact Assessments, Data Sharing Agreements, Data Processing Agreements, Data Transfer Agreements, Memorandum of Understandings etc.
  • To regularly review and update organisational privacy notices.
  • To oversee the Health Records Team whose job is to ensure the Rights of Access is appropriately met following statutory requirements.
  • To support public authorities in responding to any relevant Freedom of Information Requests.
  • To be registered as the DPO with the ICO and be the main point of contact for all regulatory authorities and the general public in relation to data issues.
  • To review and handle data complaints in line with the organisational complaints policy.
  • To review and grade all data incidents and to report any incidents to the ICO within 72-hours of notification.
  • To work collaboratively with core members of the organisation to ensure data compliance is an integral part of any process.
  • To support with the Information Risk Management programme and ensuring a central asset register and record of processing activities can be evidenced across the organisation.
  • To lead on the Records Management function of the organisation and ensure staff are understanding of their responsibilities from creation of data right through to disposal.
  • To provide regular reports to Board to apprise on progress within the IG framework.
  • To develop a series of Key Performance Indicators for monitoring and compliance purposes.
  • To oversee the regular IG and Data Protection Steering Group, ensuring appropriate updates are provided on how the organisation is being steered via the IG Framework.


Essential Qualifications and Skills

  • To be educated to Degree Level in a relevant discipline.
  • To hold suitable Data Protection qualifications/certifications and have extensive knowledge of Data Protection legislation (Data Protection Act 2018/UK GDPR/PECR/Computer Misuse Act etc).
  • Managerial/leadership qualifications evidenced through training or through relevant experience.
  • Advanced knowledge of frameworks such as Cyber Essentials Plus, DSPT, ISO:27001 etc.
  • High level of interpersonal skills and ability to work with Executive Level staff.
  • Advanced oral and written skills for communicating on complex information governance and data protection matters.
  • Report writing skills,
  • Problem solving skills and ability to respond to sudden unexpected demands.
  • Excellent time management skills with the ability to prioritise based on need.
  • Ability to work to tight deadlines.
  • Effective line manager with the ability to undertake regular 1-2-1s with staff, conduct appraisals and manage performance effectively and provide comprehensive documentation.


Desirable Qualifications and Skills

  • Experience of working in a healthcare setting in a Lead Information Governance role.
  • Experience operating in a rapidly scaling digital (health) environment with use of sensitive/ special category data
  • Experience of managing and communicating with regulators including ICO
  • Strong technical background with experience of Cyber security management.


Compensation

Competitive (plus £1,000 home-working allowance per annum)


Job Location

Home-based/various meeting locations as required.


Equal Opportunity Statement

Psychiatry-UK is an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for all employees. We welcome applications from individuals of all backgrounds and strive to provide a fair and unbiased recruitment process.

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers Education

Top 10 Best UK Universities for AI Degrees (2025 Guide)

Discover the ten best UK universities for Artificial Intelligence degrees in 2025. Compare entry requirements, course content, research strength and industry links to choose the right AI programme for you. Artificial Intelligence continues to transform industries—from healthcare to finance to transportation. The UK leads the way in AI research and education, with several universities consistently ranked among the world’s best for Computer Science. Below, we spotlight ten UK institutions offering strong AI-focused programmes at undergraduate or postgraduate level. While league tables shift year to year, these universities have a track record of excellence in teaching, research, and industry collaboration.

Jobs

How to Write a Winning Cover Letter for AI Jobs: Proven 4-Paragraph Structure

Learn how to craft the perfect cover letter for AI jobs with this proven 4-paragraph structure. Perfect for junior developers and career switchers. When applying for an AI job, your cover letter can make all the difference. For many, the process of writing a cover letter for an AI position can be daunting, especially when there are so few specific guides for tailoring it to the industry. However, a clear, effective structure combined with AI-specific language and examples can help you stand out from the competition. Whether you're a junior entering the field or a mid-career professional switching to AI, the following framework will make it easier for you to craft a compelling cover letter. In this article, we’ll take you through a proven four-paragraph structure that works and provide sample lines that you can adapt to your personal experience.

Jobs Careers

Veterans in Tech: A Military‑to‑Civilian Pathway into AI Jobs

Published on ArtificialIntelligenceJobs.co.uk – empowering the UK talent pipeline for artificial intelligence, data, and robotics. Introduction Leaving the Armed Forces is both a proud milestone and a daunting leap into the unknown. Whether you served with the Royal Navy, British Army, Royal Air Force or Royal Marines, one thing is certain: the skills you forged under pressure are in high demand—especially in the booming field of artificial intelligence (AI).  The UK’s AI market is expected to contribute £400 billion to the economy by 2030, with defence and security applications at its core. Employers from start‑ups to FTSE‑100 giants are crying out for disciplined professionals who understand mission‑critical environments. Ex‑service personnel fit the bill perfectly. This guide maps the military‑to‑civilian journey, signposts Ministry of Defence (MoD) transition programmes, and shows you exactly how to land your first AI role. Quick Win: Bookmark our live listings for Machine Learning Engineer roles to see which employers are hiring right now.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.