Information Governance & Data Protection Manager
| Posting date: | 27 January 2026 |
|---|---|
| Salary: | £42,254 to £48,823 per year |
| Hours: | Full time |
| Closing date: | 16 February 2026 |
| Location: | Bolton, Greater Manchester |
| Remote working: | Hybrid - work remotely up to 1 day per week |
| Company: | University of Bolton |
| Job type: | Temporary |
| Job reference: | VCO-002P |
Summary
In an increasingly data-driven environment, trust, transparency, and accountability matter more than ever. We are seeking an experienced Information Governance & Data Protection Manager to act as the University’s custodian of data protection and information governance, providing expert leadership and assurance across the institution.
This is a senior, influential role at the heart of the University, offering the opportunity to shape strategy, embed best practice, and ensure the highest standards of compliance and ethical information use.
The role
Working within the Registry and reporting to the Assistant Registrar, you will provide professional leadership for the University’s information governance and data protection framework. You will act as the University’s Data Protection Officer (DPO), serving as the first point of contact for data subjects, the Information Commissioner’s Office (ICO), and key internal stakeholders.
You will lead the development of strategy, policies, and risk-based assurance arrangements, overseeing data protection, freedom of information, records management, and privacy-by-design across the University Group.
Key responsibilities
Lead the University’s information governance and data protection strategy
Act as the University’s Data Protection Officer (DPO), liaising with the ICO and data subjects
Ensure compliance with UK GDPR, the Data Protection Act 2018, FOI/EIR and related regulations
Oversee and assure the handling of information rights requests (SARs, FOI/EIR), including complex cases
Lead on data breach management, reporting, and post-incident review
Develop and maintain Records of Processing Activities (ROPA) and Information Asset Registers (IARs)
Lead and quality-assure Data Protection Impact Assessments (DPIAs), embedding privacy by design and default
Develop and review privacy notices, data sharing agreements, and related documentation
Provide expert advice and assurance to senior leaders, committees, and project teams
Design and deliver training and guidance to embed information governance responsibilities across the University
About you
You will bring substantial, practical experience in data protection and information governance, with a strong understanding of UK GDPR and regulatory expectations. You will be confident operating independently, providing impartial advice at senior level, and influencing decision-making in a complex organisation.
Why join us?
This is an opportunity to play a critical role in safeguarding information, strengthening trust, and shaping the University’s approach to data protection and governance. You will join a collaborative, values-driven institution where your expertise will directly influence strategy, assurance, and reputation.
This is a senior, influential role at the heart of the University, offering the opportunity to shape strategy, embed best practice, and ensure the highest standards of compliance and ethical information use.
The role
Working within the Registry and reporting to the Assistant Registrar, you will provide professional leadership for the University’s information governance and data protection framework. You will act as the University’s Data Protection Officer (DPO), serving as the first point of contact for data subjects, the Information Commissioner’s Office (ICO), and key internal stakeholders.
You will lead the development of strategy, policies, and risk-based assurance arrangements, overseeing data protection, freedom of information, records management, and privacy-by-design across the University Group.
Key responsibilities
Lead the University’s information governance and data protection strategy
Act as the University’s Data Protection Officer (DPO), liaising with the ICO and data subjects
Ensure compliance with UK GDPR, the Data Protection Act 2018, FOI/EIR and related regulations
Oversee and assure the handling of information rights requests (SARs, FOI/EIR), including complex cases
Lead on data breach management, reporting, and post-incident review
Develop and maintain Records of Processing Activities (ROPA) and Information Asset Registers (IARs)
Lead and quality-assure Data Protection Impact Assessments (DPIAs), embedding privacy by design and default
Develop and review privacy notices, data sharing agreements, and related documentation
Provide expert advice and assurance to senior leaders, committees, and project teams
Design and deliver training and guidance to embed information governance responsibilities across the University
About you
You will bring substantial, practical experience in data protection and information governance, with a strong understanding of UK GDPR and regulatory expectations. You will be confident operating independently, providing impartial advice at senior level, and influencing decision-making in a complex organisation.
Why join us?
This is an opportunity to play a critical role in safeguarding information, strengthening trust, and shaping the University’s approach to data protection and governance. You will join a collaborative, values-driven institution where your expertise will directly influence strategy, assurance, and reputation.