Hi all,
> For any one who wishes to be based in London for a particularly
> interesting Data Protection Management role please have a read of the
> following and and contact me on the below number if you would like to
> discuss this requirement further.
>
> 0207 791 3377
>
Hugo Brown
Data Protection Manager - Strategy & Policy Team
Reports to: Head of Strategy and Policy
Direct Subordinates: None
Main purpose of job
To ensure our client is developed and operated to be fully compliant with
the requirements of the Data Protection Act (DPA) 1998 and best data
protection practice.
Key duties and accountabilities
* To develop, consult on, agree, issue and maintain a range of
congestion charging policies and guidelines on data protection issues
(including but not limited to the DPA, subject access, privacy, data
retention, CCTV, direct marketing/research, data matching) to ensure that
staff are aware of their responsibilities under the Act.
* To provide general and specific advice and guidance in
relation to the implications of the Act and how to ensure compliance is
achieved and maintained.
* To identify areas that may be at risk of being non-compliant
with the Act, to work with the project and operational teams to remedy such
risks and to advise senior managers and Directors areas of continued
non-compliance.
* To develop and manage the process for handling subject
access requests, other requests for personal data from the police and other
law enforcement agencies and general enquiries related to the Act.
* To ensure that the relevant staff receive training in
relation to congestion charging policies on data protection. To ensure that
key managers receive training in relation to the requirements of the Act so
that they are aware of their responsibilities under the Act.
* To ensure that all contracts with third parties comply with
the requirements of the Act and to provide advice and guidance to the CCS
where personal data transfers within and outside the European Economic Area
are proposed.
* To draft and agree all text for data collection notices and
scripts for usage on forms, the internet and in the telephone call centre
* To ensure that, where personal data is collected:
- all data collection forms contain the agreed data collection
notices;
- the CCS web site contains agreed data collection notices and
privacy policies;
- via telephone calls, agreed data collection and privacy scripts
are used.
* To plan and undertake audits on compliance with the
congestion charging data protection policies.
* To liaise with appropriate IT managers, the Legal
department, the HR department, all within TfL, third parties and the
Information Commissioner in relation to Data Protection matters.
* To keep the Congestion Charging Division up-to-date with
changes in Data Protection legislation and also with Codes of Practice
issued by the Information Commissioner.
* Ad hoc duties and accountabilities as directed by the Head
of Strategy and Policy, the Traffic Management Team Leader, the Assistant
Director for Congestion Charging, the Project Manager or the Managing
Director.
Management and Financial Responsibilities
The postholder will contribute to the preparation and monitoring of budgets
and financial forecasts for the group or workstream.
The postholder will have no direct line reports initially, but will have
some responsibility for a shared pool of administrative and other support
staff. Line management responsibility may be required in response to
business growth and development.
Person profile
Qualifications and experience
Candidates will be able to demonstrate experience in the following areas:
* Minimum of 3-5 years experience in dealing with data
protection issues either under the 1984 or 1998 Acts in an organisation,
preferably, a Local Authority or Government department.
* Managing the specification, implementation and maintenance
of data protection requirements for a complex project or business
initiative.
* Negotiation with the Information Commissioner and/or legal
representatives with regard to data protection issues.
* Managing internal communications and training.
* Graduate or equivalent.
Knowledge
Candidates will be expected to demonstrate the following knowledge:
* Thorough understanding of the Data Protection Act 1998 and
related Statutory Instruments.
* Thorough understanding of data protection Codes of Practice
issued by the Information Commissioner.
* Possess or be able to quickly acquire a detailed
understanding of the proposed operation of the CCS.
Personal competencies and qualities required
Candidates will be expected to demonstrate the following competencies:-
Building relationships
* Can build and maintain a network of good working
relationships both internally and externally.
* Is able to work collaboratively with colleagues.
* Good ability to fit into the working environment, working
with others from both technical and non-technical backgrounds.
Decision making
* Can analyse and interpret information and data, in order to
reach logical conclusions.
* Strong ability to quickly understand proposals and revised
proposals and to definitively state the resultant impact of the DPA.
Influencing
* Builds strong communications networks and utilises those
networks to build a case and gain support.
* Maintains a strong level of control when handling difficult
situations.
Managing change
* Able to adapt to changing needs within the business.
* Seeks new methods of working to generate further
efficiencies.
* Contributes ideas and suggestions to shape and develop the
business.
Customer focus
* Takes ownership for delivering work to meet the needs of
internal and external customers' work.
* Manages solutions in conjunction with other parties.
Communication
* Communicates clearly and confidently with others, both
verbally and in writing.
* Confidently delivers well-structured articulate
presentations in meetings.
* Collates summarises and reports information accurately
* Liases proactively with others and feeds back information to
the team.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
all commands go to [log in to unmask] not the list please!
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
