Data Protection & Information Security Assistant

Role:                                       Data Protection & Information Security Assistant

Location:                             Leeds, LS15 8GB We operate a hybrid schedule, 1-2 days based in the office.

Salary:                                 £26,000 - £33,000 per annum, DOE, plus extensive benefits

Contract type:                    Permanent

Employment type:             Full time

Working hours:                  Monday – Friday 37.5 hours per week. We work on a core hours principle. Our core hours are 09:30 - 16:00; you can work around these to suit you!

Do you want to work for the nation’s largest online pharmacy ensuring excellence for all our patients? We’re a market leader in the pharmacy world, with 25 years’ experience, helping over 1.8 million patients in England manage their NHS prescriptions from request through to delivery.  We are Great Place to Work certified as we consider colleague experience a top priority every day, and as a certified B Corp we also meet high standards of social and environmental responsibility. Our people are fundamental to our success and ensuring we achieve our vision to be a world leading, patient-centric digital healthcare provider. We are committed to continuing to develop a positive, open and honest working environment for all.

We’re looking for a proactive and conscientious individual to join our growing Information Governance & Security Team. In this hands‑on and varied role, you’ll play a key part in supporting privacy, information governance, and wider compliance activities across the Pharmacy2U Group. You’ll be confident working independently, taking ownership of tasks, and responding to a wide range of internal and external requests with diligence, accuracy, and strong attention to detail, while contributing to a collaborative and purpose‑driven team culture.

Why you’ll love working with us

We believe great people deserve great support. That’s why we offer a benefits package designed to look after your health, finances, career and life outside work.

Financial security & rewards

·        Competitive contributory pension

·        Occupational sick pay

·        Long-service awards and refer-a-friend bonuses

·        Professional registration fees covered (GPhC, NMC, CIPD and more)

·        Cycle to Work and Green Car schemes (subject to eligibility)

Family-friendly

·        Enhanced maternity and paternity pay

·        Flexible hybrid working to help balance work and home life

Health & wellbeing

·        Private healthcare insurance at discounted rates (Aviva)

·        Employee Assistance Programme and in-house mental health support

·        Access to discounted gym memberships via Blue Light Card and benefits schemes

·        Regular health and wellbeing initiatives

Career growth

·        Strong commitment to CPD, training and professional development

Time off & flexibility

·        25 days’ annual leave, increasing with service

·        Buy and sell holiday scheme

Everyday perks & exclusive discounts

·        Blue Light Card and employee discount platform

·        Exclusive discounts at The Springs, Leeds

·        25% off health & beauty purchases

·        25% off Pharmacy2U Private Online Doctor services

Culture & community

·        Regular social events throughout the year

What you’ll be doing?

·        Support and, with experience, lead the handling of data subject rights requests

·        Assist in investigating, documenting, and following up on data incidents and breaches

·        Contribute to risk assessments, DPIAs, and Legitimate Interest Assessments

·        Maintain core compliance records, including RoPAs, risk and incident registers, and training logs

·        Support internal audits and reviews of information governance and security frameworks

·        Help deliver and improve staff training across e‑learning, webinars, and in‑person sessions

·        Provide privacy input on new projects to ensure privacy by design

·        Monitor regulatory developments and share relevant guidance with internal teams

·        Work collaboratively with departments across the organisation to embed good governance practices

·        Coordinate and minute internal governance and compliance meetings

·        Respond to internal and external data protection queries and maintain shared guidance resources

·        Support completion of the NHS Data Security and Protection Toolkit

·        Help keep policies and procedures up to date and aligned with regulatory expectations

·        Manage governance inboxes and track tasks to ensure timely responses and follow‑up

Who are we looking for?

·        Experience in a support, administration or coordination role

·        Strong numerical skills and excellent attention to detail

·        Confident using IT systems and able to learn new tools quickly

·        Solid working knowledge of Microsoft Excel (intermediate level)

·        Excellent written and verbal communication skills

·        Proven ability to plan, prioritise and manage workload in fast‑paced environments

·         Comfortable working independently while being a reliable team player

·         Experience working within regulatory, ethical or compliance frameworks

·        Understanding of UK data protection and privacy legislation (UK GDPR, DPA 2018)

·        Driven, proactive and committed to delivering consistently high‑quality, accurate work

What happens next?

Please click apply and if we think you are a good match, we will be in touch to arrange an interview.

Applicants must prove they have the right to live in the UK.

All successful applicants will be required to undergo a DBS check.

Unsolicited agency applications will be treated as a gift.

#LI-RW-1