ABOUT CENTRIC HEALTH

At Centric Health, we are committed to delivering patient-centred care across our nationwide network of Primary Care practices. With a strong focus on innovation, integrity, and service excellence, we support our teams in providing high-quality, safe, and efficient healthcare.

POSITION REQUIREMENTS:

• Proven experience in a data protection, legal, compliance, or information governance role, ideally within healthcare, legal, or technology sectors.
• Strong working knowledge of GDPR, national data protection legislation, and related regulatory frameworks.
• Excellent organisational, analytical, and communication skills, with the ability to advise across all levels of the organisation.
• Demonstrated ability to manage multiple priorities in a dynamic, fast-paced environment.
• Experience handling Subject Access Requests (SARs), DPIAs, FOI requests, and data breach investigations.
• Familiarity with drafting and reviewing data processing agreements and third-party contracts.
• Professional certification in Data Protection (e.g. CIPP/E, CIPM, CDPO) is highly desirable.

WHAT WE OFFER

A dynamic and supportive working environment.
Opportunities for professional development and further training.
Competitive salary commensurate with experience.
Hybrid working model following an initial settling-in period.
If you’re passionate about privacy, data integrity, and healthcare, and are looking for a role where you can make a real impact, we’d love to hear from you.

ROLE OVERVIEW

We are seeking an experienced and proactive Data Protection Officer (DPO) to lead data protection and privacy compliance across Centric Health Primary Care. This pivotal role ensures ongoing compliance with GDPR and national legislation, safeguarding personal data while supporting best practice across the organisation. In line with Article 38.3 of the GDPR, the DPO will act independently and impartially in all matters of data processing and compliance.

KEY RESPONSIBILITIES:

• Serve as the organisation’s primary point of contact for all data protection and privacy matters, including the Data Protection Commissioner (DPC) and data subjects.
• Oversee and continuously enhance Centric Health’s Information Governance and Data Protection Framework.
• Ensure compliance with GDPR, national legislation, and internal policies through regular audits, risk assessments, and policy updates.
• Provide expert advice to staff and management on data protection obligations, best practices, and incident management.
• Maintain records of processing activities and manage the Data Protection Impact Assessment (DPIA) process.
• Lead investigations and responses to data breaches, including statutory reporting requirements.
• Review third-party contracts and data sharing agreements to ensure legal compliance.
• Manage Subject Access Requests (SARs), Freedom of Information (FOI) requests, and liaise with FOI decision-makers.
• Deliver data protection training and awareness initiatives across the organisation.
• Monitor legislative developments and update organisational practices as required.