Compliance Solicitor (Data Protection) - Remote Working Consultant - Part Time
A small-medium sized law firm with a completely remote working ethos are looking for a solicitor to join them on an ongoing basis. The firm (Legal 500 & Chambers) are looking for a Data Protection Solicitor to work as a consultant on a part time basis. They specialise in one sector (medical) but the work is split along conventional lines and specific sector experience is not necessary. Experience of dealing with the medical sector is of course very welcome.
This is a part time role, but on a consultancy basis, so hours will vary. The firm will provide you with interesting, challenging work in the healthcare sector. In return you will need to demonstrate a track record of successful delivery, be commercially minded and will probably have experience from a top tier law firm (or similar level).
The firm are seeking an experienced Data Protection Solicitor to lead on all aspects of data protection, information governance and privacy law. The successful candidate will play a pivotal role in advising healthcare organisations on GDPR, Data Protection Act 2018, Freedom of Information, and other regulatory obligations.
Key Responsibilities
Provide specialist legal advice on data protection and information governance issues, particularly within healthcare and NHS environments.
Lead on GDPR compliance projects, including drafting privacy notices, data processing agreements, and policy frameworks.
Advise on Freedom of Information Act and Subject Access Requests.
Handle data breaches and liaise with the ICO where necessary.
Support healthcare clients in managing data sharing agreements and DPIAs.
Deliver training sessions and write guidance notes for clients and internal teams.
Contribute to business development initiatives and thought leadership in data protection.
Requirements
Essential:
Strong working knowledge of UK GDPR, Data Protection Act 2018, and related legislation.
Experience advising healthcare or public sector clients on data compliance.
Desirable:
Previous experience working in or advising GP practices, PCNs, or NHS bodies.
Experience with data protection in medical partnerships or M&A transactions.
Familiarity with FOIA, PECR, and ICO enforcement trends.
CIPP/E or similar data protection qualifications.
All of your clients will be primary care professionals - doctors, dentists, pharmacists - so relevant sector experience would be an advantage, but it's not a requirement as the firm rapidly train new colleagues in the relevant regulations. You will have access to excellent administrative support and receive ongoing support and training.
This is a good opportunity to add additional work to a portfolio if you have existing work elsewhere. Important to specify that this role requires a long term commitment - this is ongoing work and the firm are not looking for short term consultancy.
When applying please highlight any medical sector experience, as well as give an indication as to the hours you have available each week and when these are (please note that the majority of hours need to be during the standard working day or at times when you can be contacted by clients). Start date is within the next few months once onboarding is complete. The firm usually look for at least 10 years PQE if not more. Evidence of experience working for large corporate/commercial law firms at some point in your career, particularly training contracts, is of particular interest to this firm.
