Summary: The Data Privacy Officer role focuses on providing expert advice on data protection activities, particularly in relation to Data Protection Impact Assessments (DPIAs) and privacy risk management. The position requires a strong understanding of UK data protection legislation and the ability to manage data subject rights requests effectively. The successful candidate will support compliance while enabling operational delivery across various projects and services.
Key Responsibilities:
- Support and draft DPIAs, privacy risk assessments and mitigation plans
- Advise on UK GDPR, Data Protection Act 2018, Data (Use and Access) Act 2025 and related privacy requirements
- Manage data subject rights requests, including SARs, redaction and disclosure processes
- Support personal data breach assessments, investigations and lessons learned activities
- Provide practical privacy advice to projects, services and business teams
- Help ensure compliance while enabling effective operational delivery
Key Skills:
- Strong working knowledge of UK data protection legislation and information governance
- Hands-on experience with DPIAs and privacy risk management
- Experience handling data subject rights requests and privacy casework
- Ability to assess risk, exercise sound judgement and provide pragmatic advice
- Excellent written communication and stakeholder engagement skills
- Experience working in a public sector, regulated or customer-focused environment
Salary (Rate): £400 per day
City: Glasgow
Country: UK
Working Arrangements: undetermined
IR35 Status: undetermined
Seniority Level: undetermined
Industry: Other
Data Privacy Officer - Drive Privacy Excellence
Are you an experienced Data Privacy professional with a passion for protecting personal information, managing risk, and enabling compliant business operations?
We're looking for a knowledgeable privacy specialist to provide expert advice across a wide range of data protection activities, with a particular focus on Data Protection Impact Assessments (DPIAs), privacy risk assessments, data subject rights, incident management, and privacy-by-design principles.
What you'll do:
- Support and draft DPIAs, privacy risk assessments and mitigation plans
- Advise on UK GDPR, Data Protection Act 2018, Data (Use and Access) Act 2025 and related privacy requirements
- Manage data subject rights requests, including SARs, redaction and disclosure processes
- Support personal data breach assessments, investigations and lessons learned activities
- Provide practical privacy advice to projects, services and business teams
- Help ensure compliance while enabling effective operational delivery
What we're looking for:
- Strong working knowledge of UK data protection legislation and information governance
- Hands-on experience with DPIAs and privacy risk management
- Experience handling data subject rights requests and privacy casework
- Ability to assess risk, exercise sound judgement and provide pragmatic advice
- Excellent written communication and stakeholder engagement skills
- Experience working in a public sector, regulated or customer-focused environment
Desirable experience:
- Scottish public sector data protection
- ICO engagement
- Utilities, infrastructure or public service organisations
- M365/SharePoint and privacy case management systems
- Data sharing agreements, supplier assurance and cyber incident processes
- Professional qualifications such as CIPP/E, CIPM or Practitioner-level privacy certifications
Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.