Experience

• 

  Common Sense Privacy

  • UK

  • Information Governance

    • Feb 2016 - Present
    • UK

    Providing Data Protection and other compliance support in Interim postscarrying out Records Management work for UK companies of global organisationsBuilding the structures needed to achieve and manage Data Protection compliance for Departments in an off-shore legislative environment;Assisting a ROI bank in meeting the documentary requirements of the Capital Regulations Directive;Designing and providing the training for the States of Jersey and presenting at their Data Protection Conference in January 2005;Auditing Data Protection compliance for government and commercial organisations;Providing Data Protection, Freedom of information, Human Rights and other relevant legislation training to government, NGO and commercial organisations including CRE, the Office of Government Commerce, Emergency Services, a private housing group, a nursing charity in the Channel Islands, a telecommunications company;Managing Subject Access requests on behalf of a nation-wide retailer;Carrying out compliance work for the National Blood Service including revision of privacy notices.

• 

  Common Sense Privacy Ltd

  • Director

    • Dec 2015 - Present

    occupying interim Data Protection Officer posts in UK charitiescarrying out Records Management work for UK companies of global organisationsBuilding the structures needed to achieve and manage Data Protection compliance for Departments in an off-shore legislative environment;Assisting a ROI bank in meeting the documentary requirements of the Capital Regulations Directive;Designing and providing the training for the States of Jersey and presenting at their Data Protection Conference in January 2005;Auditing Data Protection compliance for government and commercial organisations;Providing Data Protection, Freedom of information, Human Rights and other relevant legislation training to government, NGO and commercial organisations including CRE, the Office of Government Commerce, Emergency Services, a private housing group, a nursing charity in the Channel Islands, a telecommunications company;Managing Subject Access requests on behalf of a nation-wide retailer;Carrying out compliance work for the National Blood Service including revision of privacy notices.

• 

  Common Sense Privacy Ltd.

  • London UK

  • Director

    • Jan 2000 - Present
    • London UK

    Information Governance: Building strong business structures for compliance with privacy and FOI. Providing effective training. Designing and implementing Records Management.

• 

  RNIB Group

  • London, United Kingdom

  • Interim Group Data Protection Officer

    • Apr 2015 - Feb 2016
    • London, United Kingdom

    managing Data Protection group-wide

• 

  Cancer Research UK

  • London, United Kingdom

  • Interim Data Compliance and Policy Manager

    • Dec 2012 - Aug 2013
    • London, United Kingdom

    Managing compliance for fundraising and marketing: building and delivering a Compliance framework

• 

  Johnson & Jonson

  • UK

  • Interim Records Manager

    • Oct 2011 - Mar 2012
    • UK

    Implementing Global Standards in clear, simple and practical ways.

• 

  British Computer Society

  • member of Council and the Information Privacy Expert panel

    • 1998 - 2009

    analysing the impact of governmental and societal changes and contributing to expert opinions.

• 

  A UK retail group offering credit facilities, High Street retail and catalogue shopping;

  • Liverpool, United Kingdom

  • Group Data Protection Manager

    • Jan 1997 - Jan 2000
    • Liverpool, United Kingdom

    Set up the Group Data Protection Manager post.Created policies and procedures to support compliance, provided senior briefings and carried out training. Liaised with other organisations on the same sector, with DP authorities and public.As Information Security Manager for one of the companies in the Group.Managed IT Security liaising with business areas, technical teams and other group security managers.Rewrote the internal audit documents and dealt successfully with external audit comments.Resolved outstanding compliance issues

• 

  independent

  • Independent Information Security and Risk Management consultant

    • Jan 1995 - Jan 1997

    Tasks included:writing the information security policies for the London International Stock Exchange;carrying out an Information Risk Analysis for an International Newsprint company and writing a manual for Risk Management.

• 

  London Electricity

  • Information Security Consultant

    • Jan 1993 - Jan 1995

    Assessed IT security on different technical platforms and business areas.Designed model for logical and technical security assessments

• 

  Independent

  • Information Risk and Security consultant

    • Jan 1990 - Jan 1993

    Variety of Information Security tasks including writing chapters on training and information dissemination for Government Standards.

• 

  Computer Sciences Company

  • Security consultant

    • Jan 1985 - Jan 1990

    Carried out Information Risk Analysis work and Security for government and commercial clients.Change Manager for EFTPOS providing Change Board with all information needed for successful management of changes in a complex multi-supplier project and controlling application of changes.Gave public presentations on Risk Management and Information Security.

• 

  Home Office

  • Principal Executive Officer

    • Jan 1985 - Jan 1985

    Ran their new IT Project Support Office using Prince Methodology.

• 

  Civil Service College

  • Senior Course Director

    • Jan 1980 - Jan 1985

    Researched, wrote and directed a full portfolio of profitable courses for senior and middle management covering project management, information risk management, Data Protection, IT development and procurement and British Computer Society examinations.