Data Protection Officer

Data Protection Officer

Objectives of the role

·      Act as the primary point of contact within the organization for members of staff, regulators, and any relevant public bodies on issues related to data protection

·      Ensure the company’s policy is in accordance with General Data Protection Regulation (GDPR) and codes of practice

·      Evaluate the existing data protection framework and identify areas of non or partial compliance and rectify any issues

·      Devise training plans and provide data protection advice and support for members of staff

·      Inform and advise the Data Controller or Data Processor on all matters related to data protection

·      Promote a culture of data protection compliance across all units of the organization

Data Protection / FOI Advisory

·      Inform and advise employees and contractors on their obligations under the GDPR, as per Article 39.1(a).

·      Ensure that the Director of Corporate Services is appropriately briefed on data protection matters.

·      Navigate complex legislative environment that operates in parallel with GDPR, Data Protection and FOI, and provide advice to the Board, ODC, CEO, EMT, and Executive GDPR Steering Group.

·      Act as the Data Protection representative on various governance forums.

·      Be the independent advocate for data protection and privacy within the Agency by supporting a culture of data privacy and providing inputs to internal training initiatives.

·      Advise and support information owners on designing policy, procedures, guidelines, and systems that incorporate data privacy by design.

Qualifications

·      Have a minimum Level 9 qualification on the National Framework of Qualifications in Ireland (or equivalent in another jurisdiction) in a relevant discipline i.e. management, law, regulation, compliance, computer science).

And / Or

·      Have a formal Data Protection certification / qualification qualified i.e. ACOI Compliance Professional or CIPP-E, CIPM or other equivalent data protection certification holder and relevant prior experience as a Data Protection Officer (DPO) in a complex data privacy environment within the public or private sector.

Experience

·      Have at least 5 years’ experience as a Senior Manager in Data Privacy or a related field.

Skills

·      Demonstrate the ability to engage and influence a wide range of stakeholders so as to drive understanding, commitment, and compliance with data protection obligations.

·      Demonstrate specialist data protection, legal or technical skills.

·      Demonstrate an understanding of how to effect change in a public sector environment.