Description:
The Data Protection Officer & Information Governance Manager will work with all departments in Galway City Council to establish and maintain effective corporate and departmental information management processes and systems to effectively manage the information life cycle. The successful candidate will be required to manage and monitor standards, processes, communications, training and systems to ensure all information controlled by Galway City Council is managed in line with Galway City Council’s policies, procedures and guidelines and relevant legislation (Section 65 Local Government Act 1994).
The key duties and responsibilities of the post include the following although the list is by no means exhaustive:
Information & Records Management
- Overall responsibility for promoting, monitoring and further enhancing compliance with EU General Data Protection Regulations (GDPR).
- Ensure the Council’s policies and procedures in respect of data protection are up to date and continuously reviewed and enhanced, and monitor organisational adherence to the highest standards of data protection compliance.
- Design and or review and sign off on appropriate data processing agreements.
- Be responsible for the overall Data Protection Impact Assessments process;
- Report and manage all data protection incidents and breaches and liaise with employees, affected data subjects and DPC as required;
- Have decision making responsibility for anonymisation and pseudonymisation techniques are appropriate for particular data processing activities;
- Review and amend all third party contracts including those for data processors to ensure that they are complaint with relevant data protection legislation and regulation;
- Develop systems and capabilities to monitor adherence to the policies and design and deliver staff training on data protection obligations.
- Lead and develop the Council’s Data Governance function, as a key enabler of best practice in data protection, as well as organisational process efficiency.
- Develop and implement internal auditing processes to ensure that controls for ensuring regulatory compliance are in place and embedded throughout the organisation and report accordingly, for control and statistical purposes;
- Manage relationship, and act as liaison with the Supervisory Authority.
- Work with ICT to ensure appropriate security measures are in place to comply with legislative requirements and Galway City Council policies and procedures;
- Implementation of Galway City Council’s Information & Records Management Policy across all directorates, departments and sections; ensuring compliance with legal and regulatory requirements and the principles of good corporate governance.
- Lead the Liaise with Departments in relation to Information & Records Management aspects of the migration to SharePoint/Microsoft 365, and any other significant change management processes;
- Working with a project team to ensure that information is reviewed and managed appropriately, supporting change management and embedding the benefits of change;
- Delivering further maturity to the records and information culture and behaviours across Galway City Council;
- Be responsible for managing communications with the Office of the Data Protection Commission;
- Represent Galway City Council on the Local Authority Data Protection Officer Network and regional network.