Governance & Data Protection Partner

The Opportunity

We are looking for a Data Protection & Governance Partner to join our Governance team. This is an exciting opportunity to play a key role in strengthening governance and data protection practices across the organisation. Working closely with the Governance Manager and other Data Protection & Governance Partners, you will help embed a culture of compliance, accountability and continuous improvement.

Main responsibilities

The main responsibilities of the role are:

• Support the implementation and ongoing improvement of governance, risk management and data protection frameworks, systems and controls
• Act as a first point of contact for data protection queries, providing practical, risk-based advice and escalating complex matters where appropriate
• Lead on day-to-day data protection activities, including maintaining records of processing activities (ROPA), privacy notices and policy documentation
• Conduct Data Protection Impact Assessments (DPIAs) and support projects to ensure data protection principles are embedded from the outset
• Manage and respond to data subject requests (e.g. DSARs), ensuring compliance with statutory requirements and accurate record-keeping
• Monitor, record and support the response to personal data breaches, working collaboratively with IT and other teams to mitigate risks and share lessons learned
• Contribute to governance reporting, including preparing data protection metrics, board reports and supporting regulatory correspondence
• Support the delivery of data protection training and engagement initiatives, including coordinating the data champion network to promote a strong data protection culture

About you

We’re looking for someone who can demonstrate:

• Practical experience supporting core data protection processes (e.g. DPIAs, ROPA, data subject requests and breach management), or the ability to quickly develop this expertise
• Strong analytical skills and attention to detail, with a methodical, process-driven approach to managing information and compliance activities
• The ability to manage multiple priorities and deadlines, maintaining accurate records, audit trails and clear escalation pathways
• A high level of integrity and discretion, with experience handling sensitive and special category personal data appropriately
• Experience supporting audits, applying policies and contributing to organisational improvement and action planning
• Strong written and verbal communication skills, with the confidence to challenge constructively, provide guidance and engage stakeholders at all levels
• The ability to interpret and apply relevant legislation and guidance (including UK GDPR and the Data Protection Act 2018) in a practical, proportionate way
• Strong IT and administrative skills, including experience using Microsoft 365, alongside a proactive mindset for learning, problem-solving and continuous professional development

Job Details

Hours: 37 hours per week

Salary range: £28,183 to £28,650 per annum

Contract type: Permanent

Location: Dual based working from Lilleshall National Sports Centre, nr Newport, Shropshire (2 day a week) and from home