Hi all, > For any one who wishes to be based in London for a particularly > interesting Data Protection Management role please have a read of the > following and and contact me on the below number if you would like to > discuss this requirement further. > > 0207 791 3377 > Hugo Brown Data Protection Manager - Strategy & Policy Team Reports to: Head of Strategy and Policy Direct Subordinates: None Main purpose of job To ensure our client is developed and operated to be fully compliant with the requirements of the Data Protection Act (DPA) 1998 and best data protection practice. Key duties and accountabilities * To develop, consult on, agree, issue and maintain a range of congestion charging policies and guidelines on data protection issues (including but not limited to the DPA, subject access, privacy, data retention, CCTV, direct marketing/research, data matching) to ensure that staff are aware of their responsibilities under the Act. * To provide general and specific advice and guidance in relation to the implications of the Act and how to ensure compliance is achieved and maintained. * To identify areas that may be at risk of being non-compliant with the Act, to work with the project and operational teams to remedy such risks and to advise senior managers and Directors areas of continued non-compliance. * To develop and manage the process for handling subject access requests, other requests for personal data from the police and other law enforcement agencies and general enquiries related to the Act. * To ensure that the relevant staff receive training in relation to congestion charging policies on data protection. To ensure that key managers receive training in relation to the requirements of the Act so that they are aware of their responsibilities under the Act. * To ensure that all contracts with third parties comply with the requirements of the Act and to provide advice and guidance to the CCS where personal data transfers within and outside the European Economic Area are proposed. * To draft and agree all text for data collection notices and scripts for usage on forms, the internet and in the telephone call centre * To ensure that, where personal data is collected: - all data collection forms contain the agreed data collection notices; - the CCS web site contains agreed data collection notices and privacy policies; - via telephone calls, agreed data collection and privacy scripts are used. * To plan and undertake audits on compliance with the congestion charging data protection policies. * To liaise with appropriate IT managers, the Legal department, the HR department, all within TfL, third parties and the Information Commissioner in relation to Data Protection matters. * To keep the Congestion Charging Division up-to-date with changes in Data Protection legislation and also with Codes of Practice issued by the Information Commissioner. * Ad hoc duties and accountabilities as directed by the Head of Strategy and Policy, the Traffic Management Team Leader, the Assistant Director for Congestion Charging, the Project Manager or the Managing Director. Management and Financial Responsibilities The postholder will contribute to the preparation and monitoring of budgets and financial forecasts for the group or workstream. The postholder will have no direct line reports initially, but will have some responsibility for a shared pool of administrative and other support staff. Line management responsibility may be required in response to business growth and development. Person profile Qualifications and experience Candidates will be able to demonstrate experience in the following areas: * Minimum of 3-5 years experience in dealing with data protection issues either under the 1984 or 1998 Acts in an organisation, preferably, a Local Authority or Government department. * Managing the specification, implementation and maintenance of data protection requirements for a complex project or business initiative. * Negotiation with the Information Commissioner and/or legal representatives with regard to data protection issues. * Managing internal communications and training. * Graduate or equivalent. Knowledge Candidates will be expected to demonstrate the following knowledge: * Thorough understanding of the Data Protection Act 1998 and related Statutory Instruments. * Thorough understanding of data protection Codes of Practice issued by the Information Commissioner. * Possess or be able to quickly acquire a detailed understanding of the proposed operation of the CCS. Personal competencies and qualities required Candidates will be expected to demonstrate the following competencies:- Building relationships * Can build and maintain a network of good working relationships both internally and externally. * Is able to work collaboratively with colleagues. * Good ability to fit into the working environment, working with others from both technical and non-technical backgrounds. Decision making * Can analyse and interpret information and data, in order to reach logical conclusions. * Strong ability to quickly understand proposals and revised proposals and to definitively state the resultant impact of the DPA. Influencing * Builds strong communications networks and utilises those networks to build a case and gain support. * Maintains a strong level of control when handling difficult situations. Managing change * Able to adapt to changing needs within the business. * Seeks new methods of working to generate further efficiencies. * Contributes ideas and suggestions to shape and develop the business. Customer focus * Takes ownership for delivering work to meet the needs of internal and external customers' work. * Manages solutions in conjunction with other parties. Communication * Communicates clearly and confidently with others, both verbally and in writing. * Confidently delivers well-structured articulate presentations in meetings. * Collates summarises and reports information accurately * Liases proactively with others and feeds back information to the team. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ If you wish to leave this list please send the command leave data-protection to [log in to unmask] All user commands can be found at : - www.jiscmail.ac.uk/user-manual/summary-user-commands.htm all commands go to [log in to unmask] not the list please! ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^