HBSUK
Information Compliance Officer (FTC 12 Months)
⭐ - Featured Role | Apply direct with Data Freelance Hub
This role is for an Information Compliance Officer on a 12-month fixed-term contract, offering a competitive pay rate. Key skills include UK GDPR expertise, data subject rights handling, and experience in healthcare. Professional privacy certifications are desirable.
🌎 - Country
United Kingdom
💱 - Currency
£ GBP
-
💰 - Day rate
Unknown
-
🗓️ - Date
March 14, 2026
🕒 - Duration
More than 6 months
-
🏝️ - Location
Unknown
-
📄 - Contract
Fixed Term
-
🔒 - Security
Unknown
-
📍 - Location detailed
Nottingham, England, United Kingdom
-
🧠 - Skills detailed
#Agile #Version Control #Documentation #Leadership #DPIA (Data Protection Impact Assessment) #Data Security #Alation #Security #Compliance #GDPR (General Data Protection Regulation) #Scala #"ETL (Extract #Transform #Load)"
Role description
Information Compliance Officer
• Please note, this role is a fixed term contract for 12 months
• HBSUK is a growing healthcare company dedicated to getting people the care they need quickly. As a key player in the UK healthcare sector, we are at a pivotal point in our growth and are embarking on an ambitious digital transformation journey. We foster a collaborative, agile, and forward-thinking culture where every team member can make a significant impact.
The Information Compliance Officer plays a key role within the Data Protection Team, supporting the organisation’s compliance with UK General Data Protection Regulation (UK GDPR) and associated data protection legislation.
The post holder will act as the first point of contact for data protection inquiries and administrative process, ensuring timely handling of data subjects rights requests, incidents, and independent queries. The role requires strong operational skills, attention to detail and the ability to triage matters appropriately to senior stakeholders including the Data Protection Officer (DPO), the Risk Director (RD), and the Data Protection Manager (DPM).
You will report to the Data Protection Manager.
Key Responsibilities
• Manage and monitor the central data protection mailbox, ensuring timely triage, quality responses, and identifying themes or risks for escalation
• Lead the end‑to‑end fulfilment of data subject rights requests, coordinating responses across the business and ensuring statutory deadlines are met
• Log, investigate, and close personal data breaches and incidents, conducting root‑cause analysis and recommending corrective actions
• Escalate urgent or high‑risk data protection matters to the DPM and DPO with clear risk assessments and recommendations
• Maintain and enhance key UK GDPR accountability records, including record of processing activities (RoPAs), data protection impact assessments (DPIA)s, legitimate interest assessments (LIAs), and risk logs
• Facilitate and coordinate governance meetings, reviews, and stakeholder sessions, preparing agendas, briefing notes, and documentation packs
• Track and manage follow‑up actions from meetings, audits, risk assessments, and projects to ensure timely completion
• Manage the organisation’s suite of data protection policies and procedures, leading updates, stakeholder reviews, and version control
• Produce management information, compliance dashboards, incident trends, and audit materials for senior leadership
• Conduct initial reviews of DPIAs, project proposals, and vendor assessments, identifying gaps and areas requiring further scrutiny
• Support the delivery and refresh of data protection training and awareness activities, identifying learning needs and preparing materials
• Identify opportunities to improve data protection processes, recommending enhancements to strengthen compliance and operational efficiency and support improvement activity
Requirements
Essential
EXPERIENCE
• Proven track record as a data protection analyst, data protection administrator, or in a similar data protection or privacy focused role
• Practical experience handling data subjects rights request and personal data breaches
• Previous experience in completion of Data Security Protection Toolkit (DSPT) Audit
• Experience managing shared mailboxes, case trackers, or compliance registers
• Experience with data protection maturity assessments
• Experience completing data protection impact assessments (DPIA)
KNOWLEDGE AND SKILLS
• Strong understanding of UK GDPR, PECR, DUAA and DPA 2018
• Strong understanding of data subjects’ rights
• Excellent organisational skills with the ability to prioritise and escalate appropriately
• Proactive, collaborative, problem-solving approach
• Able to work well with teams and individuals at all levels
• Effective presentation, communication, and interpersonal skills
Desirable
EXPERIENCE
• Previous experience working in the healthcare industry
KNOWLEDGE AND SKILLS
• PECR
• Caldicott Principles
QUALIFICATIONS
• Professional privacy certifications such as: CIPP/E, CIPM, CIPT, AIGP
Our Commitment To You
We are committed to building a diverse team of HBSUK who are smart, nice, and get things done where everyone at HBSUK is empowered to bring their authentic self to their work. We are all responsible for stewarding a high-performance culture in which all HBSUK employee's belong and thrive. We are proud to be an equal opportunity employer and welcome applications from people of all backgrounds and experiences.
If this opportunity is something which appeals to you, get in touch today, so we can ensure you have the best experience throughout your search.
Information Compliance Officer
• Please note, this role is a fixed term contract for 12 months
• HBSUK is a growing healthcare company dedicated to getting people the care they need quickly. As a key player in the UK healthcare sector, we are at a pivotal point in our growth and are embarking on an ambitious digital transformation journey. We foster a collaborative, agile, and forward-thinking culture where every team member can make a significant impact.
The Information Compliance Officer plays a key role within the Data Protection Team, supporting the organisation’s compliance with UK General Data Protection Regulation (UK GDPR) and associated data protection legislation.
The post holder will act as the first point of contact for data protection inquiries and administrative process, ensuring timely handling of data subjects rights requests, incidents, and independent queries. The role requires strong operational skills, attention to detail and the ability to triage matters appropriately to senior stakeholders including the Data Protection Officer (DPO), the Risk Director (RD), and the Data Protection Manager (DPM).
You will report to the Data Protection Manager.
Key Responsibilities
• Manage and monitor the central data protection mailbox, ensuring timely triage, quality responses, and identifying themes or risks for escalation
• Lead the end‑to‑end fulfilment of data subject rights requests, coordinating responses across the business and ensuring statutory deadlines are met
• Log, investigate, and close personal data breaches and incidents, conducting root‑cause analysis and recommending corrective actions
• Escalate urgent or high‑risk data protection matters to the DPM and DPO with clear risk assessments and recommendations
• Maintain and enhance key UK GDPR accountability records, including record of processing activities (RoPAs), data protection impact assessments (DPIA)s, legitimate interest assessments (LIAs), and risk logs
• Facilitate and coordinate governance meetings, reviews, and stakeholder sessions, preparing agendas, briefing notes, and documentation packs
• Track and manage follow‑up actions from meetings, audits, risk assessments, and projects to ensure timely completion
• Manage the organisation’s suite of data protection policies and procedures, leading updates, stakeholder reviews, and version control
• Produce management information, compliance dashboards, incident trends, and audit materials for senior leadership
• Conduct initial reviews of DPIAs, project proposals, and vendor assessments, identifying gaps and areas requiring further scrutiny
• Support the delivery and refresh of data protection training and awareness activities, identifying learning needs and preparing materials
• Identify opportunities to improve data protection processes, recommending enhancements to strengthen compliance and operational efficiency and support improvement activity
Requirements
Essential
EXPERIENCE
• Proven track record as a data protection analyst, data protection administrator, or in a similar data protection or privacy focused role
• Practical experience handling data subjects rights request and personal data breaches
• Previous experience in completion of Data Security Protection Toolkit (DSPT) Audit
• Experience managing shared mailboxes, case trackers, or compliance registers
• Experience with data protection maturity assessments
• Experience completing data protection impact assessments (DPIA)
KNOWLEDGE AND SKILLS
• Strong understanding of UK GDPR, PECR, DUAA and DPA 2018
• Strong understanding of data subjects’ rights
• Excellent organisational skills with the ability to prioritise and escalate appropriately
• Proactive, collaborative, problem-solving approach
• Able to work well with teams and individuals at all levels
• Effective presentation, communication, and interpersonal skills
Desirable
EXPERIENCE
• Previous experience working in the healthcare industry
KNOWLEDGE AND SKILLS
• PECR
• Caldicott Principles
QUALIFICATIONS
• Professional privacy certifications such as: CIPP/E, CIPM, CIPT, AIGP
Our Commitment To You
We are committed to building a diverse team of HBSUK who are smart, nice, and get things done where everyone at HBSUK is empowered to bring their authentic self to their work. We are all responsible for stewarding a high-performance culture in which all HBSUK employee's belong and thrive. We are proud to be an equal opportunity employer and welcome applications from people of all backgrounds and experiences.
If this opportunity is something which appeals to you, get in touch today, so we can ensure you have the best experience throughout your search.
