Search for more jobs in London
Job overview
The post holder will be the Trust lead for meeting the organisation’s statutory obligations under the Data Protection Act 2018 and Freedom of Information Act 2000 in relation to responding to Subject Access and Freedom of Information Requests.
They will be the Trust lead and Subject Matter Expert for FOI, ensuring all requests are responded to, and advising the Trust on the use of exemptions where appropriate The postholder will ensure that the Trust has robust, up to date and fit for purpose policies and procedures to respond to SAR and FOI requests. They will oversee the work of the IG team in responding to Subject Access Requests and Freedom of Information requests in line with statutory timescales and ensure requests are appropriately logged and tracked.
The post holder will have direct contact with members of the public as well as staff and service users, and must be a confident communicator with a keen focus on delivering excellent customer service. The role will support compliance with the following legislations •UK General Data Protection Regulation (GDPR) •Data Protection Act 2018 •Freedom of Information Act 2000 •Access to Health Records Act 1990 •Environmental Information Regulations 2004 (EIR) •Re – use of Public Sector Information Regulations 2015 •NHS Act 2006
Main duties of the job
- Take lead responsibility for the Trust's Individual Rights including Subject Access Requests (SARs) and Freedom of lnformation (FOIs) functions: ensure all requests are logged, tracked, responded to within statutory timescales and escalated appropriately.
- Provide specialist guidance and decision-making on complex or contentious requests, including application of exemptions, redactions, internal reviews, and liaison with other services. Manage the escalation process to ICO (or other regulators) when required - implement lessons learned and ensure root-cause analysis of breaches or late responses.
- Maintain and monitor the Trust's information risk register (in respect of IG, Individual Rights and FOI) and escalate significant risks.
- Support the collation and management of FOl publication scheme and ensure the website is up to date.
- Provide oversight or line-management (or deputise for) the IG team; ensure service level agreements, staffing, quality assurance of responses and training are in place.
- Ensure that the Trust has a compliant FOI Publication scheme which is up to date and includes all categories of information as required under the ICO guidance document.
- Support the IG Compliance Manager and Data Protection Officer.
- Develop & monitor KPIs and dashboards on Individual Rights and FOl performance, themes and trends; report to Information Governance Steering Group / Audit & Risk Committee.
Detailed job description and main responsibilities
- Responsible for the quality assurance checking of FOI and Individual Rights responses before they are released.
- Support the investigation of complaints relating to Individual Rights and FOIs
- Lead the collation of responses to Freedom of Information requests (FOI) working with colleagues across the Trust.
- Manage the Records Management Policy, including naming conventions, filing structures and file plans.
- Support the management of archiving and appropriate retention and destruction of official records in line with the Trust Policy.
- Support staff and stakeholders in the provision of appropriate filing structures, access control and management of electronic information.
- Developing and supporting a culture of high-quality information governance management practice including providing advice and guidance on the operation of corporate and clinical policies and data protection obligations where appropriate
- Implementing and supporting systems and practices which facilitate compliance with all legal, statutory and good practice requirements.
- Support with the implementation of the overarching Information Governance strategy to meet statutory and legal requirements.
- Take responsibility for the requirement of the Data Security and Protection Toolkit within your remit, ensuring that there is an auditable evidence base and to deliver satisfactory standard across all requirements.
- Liaise with the risk management function of the Trust to ensure the mitigation of risk and including managing the information risk register.
- Develop the information governance culture, working across stakeholders to communicate information governance standards and constantly seek to raise awareness.
- Be an expert in the requirements of UKGDPR, Individual Rights, EIR, and RPSI to facilitate best practice and ensure that this is communicated clearly and acted upon effectively.
- Work actively with Staff and stakeholders to ensure that the information governance processes meet best practice.
This is not an exhaustive list, Please see the attached Job Description and Person Specification for more information on the role requirements and duties.
Person specification
Skills
Essential
- An eye for accuracy and detail
- Strong and positive communication skills
- Ability to persuade and motivate
- Ability to maintain complex document logs
- Ability to contribute ideas for service improvement and development
- Excellent time management skills with an ability to prioritise
- Ability to organise complex schedules of work and diary management
- Able to manage own workload
Desirable
- Ability to create documentation for a wide variety of audiences
Personal
Essential
- Collaborative and team approach to work
- Self-motivated and proactive approach with excellent interpersonal skills
- Ability to respond to changing deadlines and timescales
Experience
Essential
- Evidence of continuing professional development
- Advanced knowledge and experience of Microsoft 365 tools
- Understanding of the NHS Data Security and Protection Toolkit
- Understanding of the current NHS environment and the structural changes brought about by the Health and Social Care Act.
- Awareness of record management principles
- Awareness or experience of working within a commissioned and client facing environment
- Manipulating information skills
- Advanced keyboard skills, use of a range of software
Desirable
- Experience of Power BI
- Implementation/delivery of the DSPT
Qualifications
Essential
- Degree level education or equivalent or previous relevant experience
Desirable
- Evidence of further education in Information Governance, Information Management etc.
- Evidence of accredited training in GDPR
Other Requirements
Essential
- Experience working in governance environment
Desirable
- Understanding/awareness of Mental Health Trust
WhatsApp job alerts
Get instant WhatsApp alerts for Band 7 Manager and Corporate roles in London
Create your Job Clerk account first. We'll collect your alert preferences during onboarding and help you turn on WhatsApp notifications for matching healthcare roles.
Applying for this NHS job
This advert is for Subject Access Request (SAR) and Freedom of Information (FOI) Lead with Camden and Islington NHS Foundation Trust in London, London, England. It is listed as a Band 7 Manager and corporate role. The advertised salary is £58,133 - £65,261 Per annum inclusive of HCAS. The contract type is Permanent. The application deadline is 30 Jun 2026.
Before you apply, compare the job description with the person specification and mirror the employer's essential criteria in your supporting information. Use the vacancy title, employer, location, salary, contract type, closing date and posted date (16 Jun 2026) to decide whether this role fits your current NHS job search. If the employer can close applications early, prepare the application before the stated deadline rather than waiting for the final day.
For more context, review related Job Clerk pages for the same profession, band or location where they exist, then use the application-support guides to tailor your statement and prepare for interview.