Subject Matter Expert

• Aug 2022 - Present

Data Protection Officer

• Jan 2021 - Apr 2021

Executive Director

• Nov 2017 - Aug 2020

As a key member of the Central Compliance Privacy Team, I helped foster an environment that drove appropriate risk control behaviour. This involved anticipating, identifying and mitigating the privacy risks that arose, having due regard for the many privacy laws and legislative proposals that impacted a global bank. It included advising on appropriate privacy compliance frameworks, developing and monitoring a range of risk metrics, and conducting a large number of Privacy Impact Assessments. I also developed and maintained strong personal relationships with colleagues in regional, functional and global compliance & project teams, and quickly learnt to appreciate the very different expectations that individuals and regulators have about privacy in the countries within the bank’s footprint.

Associate Director

• Apr 2016 - Nov 2017

I took an active role in developing Grant Thornton'a privacy practice through various means including proposition and service development. I managed a team of professionals providing a wide range of privacy services to clients, mainly in the financial services sector. Projects ranged from privacy audits and targetted General Data Protection Regulation readiness assurance assignments to large-scale business transformation programmes. I took an active role in developing Grant Thornton'a privacy practice through various means including proposition and service development. I managed a team of professionals providing a wide range of privacy services to clients, mainly in the financial services sector. Projects ranged from privacy audits and targetted General Data Protection Regulation readiness assurance assignments to large-scale business transformation programmes.

Managing Director

• May 2012 - Sep 2017

Delivering privacy solutions that work for you. Projects included: • Privacy Impact Assessments for public authorities in Ireland. • Data protection reviews to help organisations, principally in the financial services, telecommunications, education & charitable sectors, run effective data protection governance programmes. Delivering privacy solutions that work for you. Projects included: • Privacy Impact Assessments for public authorities in Ireland. • Data protection reviews to help organisations, principally in the financial services, telecommunications, education & charitable sectors, run effective data protection governance programmes.

Non Executive Director

• Nov 2013 - Apr 2016

Specialist Adviser

• Nov 2015 - Feb 2016

Briefed parliamentarians and witnesses, and helped draft the Joint Committee’s report. Briefed parliamentarians and witnesses, and helped draft the Joint Committee’s report.

Chairman

• Jun 2010 - Sep 2014

The Data Protection Forum is an association of over 250 members from more than 120 public and private sector companies and organisations. These encompass financial services, retail, law, accountancy, consultancy, marketing, travel and insurance from the private sector, as well as charities and public sector organisations such as the police, local authorities, central government, health and universities. The Forum was formed to provide a focus for the exchange, analysis and communication of information on all matters relating to the protection of personal information and compliance with Data Protection and Freedom of Information Law.

Specialist Adviser

• Jul 2012 - Nov 2012

Briefed parliamentarians and witnesses, and helped draft the Joint Committee’s report.. Briefed parliamentarians and witnesses, and helped draft the Joint Committee’s report..

Head of Data Protection

• Sep 2000 - May 2012

Developed a data protection compliance programme for One2One, which was rebranded as T-Mobile in 2002. Following the merger of T-Mobile and Orange in 2010, was responsible for creating a data protection compliance and accountability strategy for Everything Everywhere (subsequently rebranded as EE), which took into account the different requirements of the corporate brands. Managed the T-Mobile Law Enforcement Liaison Team, with a staff of 18 and a budget of £4m and maintained its reputation as the UK’s most highly regarded telecommunications law enforcement liaison unit (Jan 01 – Jan 11). Represented the company on the Home Office working party on communications data retention, which devised and monitored statutory data retention standards and relevant laws (Mar 01 – Jan 12). Represented the company on Association of Chief Police Officers Data Communications Group, which devised and monitored statutory data provision standards (Mar 01 – Mar 09). Represented the company on DTI working party which implemented EU Directives on Privacy & Electronic Communications (Jan 02 - Sep 03) and subsequently represented the company during the Ministry of Justice / ICO discussions on the implementation of the ePrivacy Directive (Jan 10 - May 11). Represented the company on the Confederation of British Industry’s Data Protection Panel & the CBI Information Security Working Group (Sep 08 – May 12). Represented the company on the British Standards Institute working party which developed an internationally recognised standard for compliance with the Data Protection Act (BS 10012:2009) (May 08 – Jun 09). Represented the company on working parties set up by the Mobile Broadband Group, the Mobile Data Association, the GSM Association & the Telecommunications UK Fraud Forum (Mar 01 – Jan 12). Security cleared to DV level.

Various Roles

• Nov 1989 - Sep 2000

Developed ABI's representations on a wide range of legislative matters concerning general insurance legislation, then specifically liability insurance, and accountable for ABI's liaison with the Insurance Ombudsman Bureau. Also responsible for the data protection aspects of the Claims & Underwriting Exchange (Oct 93 - Jun 95). Specialised in issues involving data protection, human rights, freedom of information, electronic commerce, unfair contract terms, the establishment of the Financial Ombudsman Service, and the development of ABI's codes, standards and other regulatory initiatives. Represented the ABI on a working party which created the Northern Ireland Personal Injury Anti-Fraud Register (Jun 94). Represented the ABI on a working party to devise the Personal Investment Authority Ombudsman Scheme, set up by the PIA (Sep 93 – Feb 94).

Various Roles

• Oct 1984 - Oct 1989

Employed in the underwriting and then International Business Planning Department, finally developing and maintaining systems to benchmark standards around the company. Employed in the underwriting and then International Business Planning Department, finally developing and maintaining systems to benchmark standards around the company.

Commissioned Officer

• Oct 1981 - Oct 1984

Commissioned as a Lieutenant in the Royal Corps of Signals and posted to 259 Signal Squadron (Cyprus). Responsible for the maintenance of the RAF telephone network in South West Cyprus. Commissioned as a Lieutenant in the Royal Corps of Signals and posted to 259 Signal Squadron (Cyprus). Responsible for the maintenance of the RAF telephone network in South West Cyprus.