Data Protection Manager

Allen Lane are partnering with Barking & Dagenham Reside on their recruitment for a Data Protection Manager to join their Governance team., The Data Protection Manager will lead on all aspects of data protection, data governance, retention schedules, and data compliance across B&D Reside, ensuring that personal and organisational data is managed securely, lawfully, and in line with GDPR, UK Data Protection Act, and other relevant legislation. This role is pivotal in embedding a strong culture of privacy and compliance throughout the organisation, safeguarding resident and corporate information, and reducing risk.

Beyond core data protection duties, the position will contribute to wider corporate compliance activities, including supporting governance frameworks, risk management processes, and assurance reporting. The role will involve developing and maintaining policies, supporting internal audits, and ensuring adherence to regulatory requirements across multiple business areas. Acting as a key advisor on compliance matters, the role will work closely with internal teams and external partners to ensure B&D Reside meets its obligations under housing and other statutory requirements.

While the B&D Reside currently retains an external Data Protection Officer (DPO), this position will build internal capability and may transition into the DPO role over time. The successful candidate will play a strategic role in shaping compliance practices, delivering staff training, and supporting innovation in secure data management and governance.

Key Accountable Areas

Data Protection & Governance

• Develop, implement, and maintain data retention schedules in line with GDPR and UK Data Protection Act, as well as with the Local Authority
• Monitor compliance with data protection laws and internal policies across all business units.
• Lead on Data Protection Impact Assessments and ensure fair and compliant Data Transfers between Reside and third parties.
• Act as the first point of contact and lead on data breaches, ensuring timely investigation, reporting, and remediation.
• Oversee and provide internal support to Freedom of Information (FOI), Subject Access Requests (SAR) and other data subject rights processes.
• Maintain accurate records of processing activities and ensure readiness for ICO audits.

Policy, Training & Awareness

• Draft and update data protection policies, privacy notices, and related compliance documentation.
• Ensure policies are communicated effectively and embedded across the organisation.
• Deliver training sessions and awareness campaigns for staff on data protection and privacy best practices.
• Provide guidance and support to teams on compliance requirements and best practice.
• Develop clear communication strategies for residents regarding their data rights.

Corporate Compliance & Assurance

• Support wider compliance activities, including governance frameworks, risk management, counter fraud, anti-money-laundering and assurance reporting.
• Conduct internal audits on data compliance and support on reporting for governance committees.
• Support on corporate contracting, including reviewing third-party contracts for data processing clauses and ensure supplier compliance.
• Assist with anti-money laundering checks and other statutory compliance requirements.
• Build capability to assume DPO responsibilities over time and liaise with external DPO and regulatory authorities.

BD Reside is an agile and growing organisation, and your role may change over time as we continue to grow and mature. Some of the responsibilities may change from time to time in line with agreed expectations and your proven skill set.

Essential

• Strong working knowledge of GDPR, UK Data Protection Act, and related regulations.
• Ability to design and implement record retention schedules.
• Excellent organisational skills and attention to detail.
• Ability to effectively work as a subject matter expert
• High integrity and discretion when handling sensitive information.
• Strong communication skills, able to explain complex compliance requirements clearly.
• Proficient in Microsoft Office and data management systems.
• Knowledge of ICO guidance and regulatory reporting requirements.
• Committed to and able to demonstrate behaviours that support Reside's Principles

Desirable

• Professional certifications (e.g., CIPM, CISM, C-DPO or similar).
• Experience in housing or other regulated sectors.
• Knowledge of cyber security principles and privacy by design.
• Experience in risk management, governance, or internal audit.
• Ability to deliver training and awareness sessions.