Job summary
The post holder will be the recognised General Practice subject matter expert in Data Protection / GDPR, specifically relating to Healthcare, as well as providing Information Governance (IG) expertise (includingbut not limited to, confidentiality, IG risk and IG incident management) to the NEL ICB, predominantly to primary care organisations. The post holder will support the effective delivery of a range of ICB activities by providing advice and guidance regarding complex Data Protection, GDPR and IG related matters.
Primary care requests and day to day management of all aspects of data protection and processes across NEL ICB (this role incorporates GP services/practices), and provision of expert advice and guidance toall staff regarding responding to a subject access request (including GPs), including liaising with relevant health professionals to determine any possible harm resulting from the release of the information. Leadthe team to offer a Data Protection Officer Service to general practices across all seven areas of the ICB.
Main duties of the job
The service is to offer Primary care DPO support, advice and guidance around Data Protection legislation. The post holder will be the named GP Data Protection Officer for NEL ICB GP practices and be responsible for the delivery of an information governance assurance model, the development and delivery of standardised tools, operational support and advice to a number of designated stakeholders to the standard required by the relevant contract or service level agreement.
The post holder will advise and liaise with senior managers both within their member practices and NEL ICB, to support the IG agenda, ensuring good practice is embedded in the strategic and operational decision making, business planning and performance management processes. They will keep managers informed about new, strategically important areas of development in information governance/data sharing, including national and local initiatives.
The post holder will also undertake detailed reviews of new and existing primary care data sharing arrangements within the ICBs area which affect their practices and work with partners to ensure that these remain in force, current and are updated to reflect changes arising as a result of the new data protection legislation.
To develop, implement and deliver the organisations Information Governance (IG) Strategy in line with the General Data Protection Regulation (UK GDPR) and wider Data Protection principles, includingcommon law.
About us
North East London is steeped in history and culture, and home to over two million people (and rising). It's the most diverse area of the UK; and because of that, one of the most exciting and vibrant places to work.
NHS North East London works with our health, social care, voluntary and community partners and residents) to plan and buy health services to meet our population's needs, making sure all parts of the local health and care system work effectively together. We work as part of the North East London Integrated Care System northeastlondonhcp.nhs.uk
We make sure residents and visitors have the best physical and mental health and have good access to high-quality health and care services. We have a vision to "work with and for all the people of North East London to create meaningful improvements in health, wellbeing and equity."
We serve eight local authority areas: Barking and Dagenham; City of London; Hackney; Havering; Newham; Redbridge; Tower Hamlets; and Waltham Forest.
Job description
Job responsibilities
Post holder has responsibility and accountability for own work area and leads independently on this Oversee team members delivery of day to day activities and projects and a range of business initiatives Operate in a highly political and sensitive environment Support a portfolio of initiatives; demonstrating value for money through tracking, managing and delivering agreed benefits Demonstrate effective stakeholder management across different departments and at all levels. The post holder is expected to monitor data governance compliance, however, responsibility for compliance remains with the data controller and processor. Provides expert advice, guidance, and support to ICB Senior Information Risk Owners and Caldicott Guardians (Governing Body Members) and develop effective working relationships with these individuals. Advise and support Practice Partners, Directors and Senior Managers in their understanding of Information Governance and how it applies to their role in the organisation. Membership of NEL ICB Data Access Group representing primary care and driving standards and progress for data processing agreements and security for shared processing of personal data. Completion of Impact Assessments for processing of primary care data shared with system colleagues and Digital Technology Assessment Criteria (DTAC) for newly commissioned or significantly changed systems. Membership of NEL ICB Information Governance Steering Group representing primary care and submission of primary care DPO updates and reports
Please see attached JD and PS for detailed job description and main responsibilities.
Job description
Job responsibilities
Post holder has responsibility and accountability for own work area and leads independently on this Oversee team members delivery of day to day activities and projects and a range of business initiatives Operate in a highly political and sensitive environment Support a portfolio of initiatives; demonstrating value for money through tracking, managing and delivering agreed benefits Demonstrate effective stakeholder management across different departments and at all levels. The post holder is expected to monitor data governance compliance, however, responsibility for compliance remains with the data controller and processor. Provides expert advice, guidance, and support to ICB Senior Information Risk Owners and Caldicott Guardians (Governing Body Members) and develop effective working relationships with these individuals. Advise and support Practice Partners, Directors and Senior Managers in their understanding of Information Governance and how it applies to their role in the organisation. Membership of NEL ICB Data Access Group representing primary care and driving standards and progress for data processing agreements and security for shared processing of personal data. Completion of Impact Assessments for processing of primary care data shared with system colleagues and Digital Technology Assessment Criteria (DTAC) for newly commissioned or significantly changed systems. Membership of NEL ICB Information Governance Steering Group representing primary care and submission of primary care DPO updates and reports
Please see attached JD and PS for detailed job description and main responsibilities.
Person Specification
Knowledge/Experience
Essential
- Educated to degree level in relevant subject or equivalent level qualification or significant experience of working at a similar level in specialist area
- Sound knowledge of the Data Protection Act and other key legislation around the security and processing of personal data within the NHS.
- Understanding of and experience in completing DPIAs
- Significant experience in leading an information governance assurance framework and delivering to the required standard of quality assurance and audit.
- Significant experience of successfully operating in a politically sensitive environment
- Experience of co-ordinating projects in complex and challenging environments
- Experience of managing risks and reporting
- Experience in a healthcare environment
Person Specification
Knowledge/Experience
Essential
- Educated to degree level in relevant subject or equivalent level qualification or significant experience of working at a similar level in specialist area
- Sound knowledge of the Data Protection Act and other key legislation around the security and processing of personal data within the NHS.
- Understanding of and experience in completing DPIAs
- Significant experience in leading an information governance assurance framework and delivering to the required standard of quality assurance and audit.
- Significant experience of successfully operating in a politically sensitive environment
- Experience of co-ordinating projects in complex and challenging environments
- Experience of managing risks and reporting
- Experience in a healthcare environment
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.