Data Protection Practitioner

Barnsley Healthcare Federation CIC

Location: Barnsley & Client Sites with UK-wide travel as required

Salary: Up to £30,000 per annum

Contract: Full-time, fixed-term for 1 year but may be extended

Reports to: Data Protection and Governance Manager

About

Barnsley Healthcare Federation (BHF) is a specialist provider of information governance and data protection support, working with organisations across healthcare, public services, and regulated environments. We help our clients navigate the complexities of UK GDPR, the Data Protection Act 2018, and wider information governance frameworks with clarity, confidence, and practical expertise.

Our mission is simple: to strengthen data protection culture, reduce organisational risk, and ensure our clients can operate safely, compliantly, and efficiently. We pride ourselves on delivering high‑quality, tailored support that blends technical knowledge with a collaborative, people‑focused approach.

Joining Barnsley Healthcare Federation means becoming part of a growing, forward‑thinking organisation that values professionalism, integrity, and continuous improvement. You will work alongside an experienced DP/IG specialist and contribute to meaningful work that protects people, organisations, and sensitive information every day.

The Role

As a Data Protection Practitioner at BHF, you will play a key role in delivering high‑quality data protection services to our clients. You will provide expert advice, support operational teams, manage data protection and information governance processes, and help embed strong data protection practices across diverse environments.

This is an excellent opportunity for someone who enjoys problem‑solving, working collaboratively, and applying legislation in a practical, real‑world context.

Key Responsibilities

  • Provide expert advice on UK GDPR, the Data Protection Act 2018, and information governance best practice to BHF clients.
  • Support DPIAs by identifying risks, documenting findings, and recommending mitigations.
  • Manage Subject Access Requests (SARs) and other information rights requests within statutory timescales.
  • Oversee and support the management of incidents and breaches, including investigation, risk assessment, escalation, and reporting.
  • Assist with the handling of complaints ensuring timely and appropriate resolution.
  • Support audit activity, compliance monitoring, and continuous improvement initiatives.
  • Deliver training, workshops, and awareness sessions to promote strong DP/IG culture across client organisations.
  • Respond to data protection and information governance queries from internal and external stakeholders as well as the public.
  • Provide confidential minutetaking for sensitive meetings where required.
  • Maintain accurate documentation, logs, and evidence to support compliance and audit readiness.
  • Contribute to the development and review of data protection impact assessments, data security protection toolkit, policies, procedures, and guidance materials.
  • Work collaboratively with client operational teams, clinical staff, and corporate services to embed good data protection practice.

Knowledge, Training & Experience:

Essential:

  • Strong working knowledge of UK GDPR and the Data Protection Act 2018.
  • Experience in healthcare, NHS, or primary care environments.
  • Experience managing SARs, DPIAs, incidents, breaches, or compliance processes.
  • Understanding of confidentiality, Caldicott Principles, and information security best practice.
  • Experience supporting staff engagement, training, or awareness activities.
  • Evidence of continuous professional development.

Desirable:

  • Formal qualification in data protection or information governance.
  • Experience supporting audits or regulatory inspections.
  • Experience working with NHS IG frameworks (DSPT, IG Toolkit).
  • Experience delivering training or awareness sessions.

Skills & Competencies

  • Strong written and verbal communication skills.
  • Excellent analytical and problem‑solving abilities.
  • Ability to manage sensitive and confidential information appropriately.
  • Ability to work independently, prioritise workload, and meet deadlines.
  • High attention to detail and accuracy.
  • Ability to interpret legislation and translate it into practical guidance.
  • Strong interpersonal skills with the ability to influence and support colleagues at all levels.
  • Calm, professional approach when dealing with incidents and complex issues.
  • Strong IT skills, including Microsoft Office and IG systems.

Personal Qualities

  • Professional, calm, and resilient.
  • Discreet and trustworthy with confidential information.
  • Proactive and solution‑focused.
  • Collaborative and supportive team member.
  • Commitment to continuous improvement.

Working Conditions

  • Predominantly desk‑based with regular use of display screen equipment.
  • Occasional travel to client sites across the UK.
  • Exposure to sensitive information requiring emotional resilience.
  • Frequent need for concentration when analysing complex information.

Ready to Join Barnsley Healthcare Federation?

If you are passionate about data protection and want to make a meaningful impact across a range of organisations, we would love to hear from you.

How to Apply

Please send your CV and a short cover letter to ***email_hidden*** with the subject line Data Protection Practitioner Application – [Your Name].

Apply Now Apply Now Post a Resume

See more jobs in Barnsley, England, jobs in the United Kingdom