Data Protection Officer
Objectives of the role
· Act as the primary point of contact within the organization for members of staff, regulators, and any relevant public bodies on issues related to data protection
· Ensure the company’s policy is in accordance with General Data Protection Regulation (GDPR) and codes of practice
· Evaluate the existing data protection framework and identify areas of non or partial compliance and rectify any issues
· Devise training plans and provide data protection advice and support for members of staff
· Inform and advise the Data Controller or Data Processor on all matters related to data protection
· Promote a culture of data protection compliance across all units of the organization
Data Protection / FOI Advisory
· Inform and advise employees and contractors on their obligations under the GDPR, as per Article 39.1(a).
· Ensure that the Director of Corporate Services is appropriately briefed on data protection matters.
· Navigate complex legislative environment that operates in parallel with GDPR, Data Protection and FOI, and provide advice to the Board, ODC, CEO, EMT, and Executive GDPR Steering Group.
· Act as the Data Protection representative on various governance forums.
· Be the independent advocate for data protection and privacy within the Agency by supporting a culture of data privacy and providing inputs to internal training initiatives.
· Advise and support information owners on designing policy, procedures, guidelines, and systems that incorporate data privacy by design.
Qualifications
· Have a minimum Level 9 qualification on the National Framework of Qualifications in Ireland (or equivalent in another jurisdiction) in a relevant discipline i.e. management, law, regulation, compliance, computer science).
And / Or
· Have a formal Data Protection certification / qualification qualified i.e. ACOI Compliance Professional or CIPP-E, CIPM or other equivalent data protection certification holder and relevant prior experience as a Data Protection Officer (DPO) in a complex data privacy environment within the public or private sector.
Experience
· Have at least 5 years’ experience as a Senior Manager in Data Privacy or a related field.
Skills
· Demonstrate the ability to engage and influence a wide range of stakeholders so as to drive understanding, commitment, and compliance with data protection obligations.
· Demonstrate specialist data protection, legal or technical skills.
· Demonstrate an understanding of how to effect change in a public sector environment.