This is a senior position reporting to the Deputy CIO and accountable to the SIRO. The Head of Information Governance and Data Protection Officer (DPO) provides strategic leadership for the organisations Information Governance (IG) framework, ensuring compliance with statutory and regulatory requirements across data protection, confidentiality, records management, information rights (including FOI and SAR) and information security.

The post holder acts as the Groups statutory DPO under the UK GDPR and the Data Protection Act 2018, offering independent oversight of compliance, advising on high-risk processing and DPIAs, and serving as the primary contact for the Information Commissioner's Office (ICO) and data subjects.

The role leads the IG function, develops and maintains policies, oversees the DSP Toolkit, coordinates training and awareness, and ensures effective incident management and risk assurance to the SIRO, Caldicott Guardian and Trust Board.

Main duties of the job

Works closely with the Chief Information Officer, Deputy Chief Information Officer, Caldicott Guardian, Senior Information Risk Owner, Executive Directors, CSU leads and Information Asset Owners to ensure data protection and confidentiality are embedded across the organisation, while also supporting clinical and operational teams with policy implementation.

Work closely with the management teams and boards of the Groups Limited Liability Partnerships (LLP's) in the role of DPO.

Collaborates with clinical staff, corporate staff, digital / cyber teams, and information governance colleagues both within the Groups and regionally and nationally including NHS England.

Data Protection Officer, appointed under Article 37 of UK GDPR, operates independently but liaises with the Chief Executive, SIRO, and Information Governance leads to advice on legal compliance, data breaches, and privacy risks, while maintaining a direct line to the Information Commissioner's Office for regulatory matters.

South Tees Hospitals NHS Foundation Trust and North Tees and Hartlepool NHS Foundation Trust now form University Hospitals Tees and as such you may be required to work at any site across both Trusts.

At North Tees & Hartlepool NHS Foundation Trust, we want our organisation to be the best place to work with the right staff, in the right roles, at the right time, to ensure we deliver exceptional patient care and experience.

We will support staff through providing an inclusive and supportive workplace with health and well-being initiatives, staff benefits and opportunities for personal and professional development.