×
Register Here to Apply for Jobs or Post Jobs. X

Privacy Lead – R&D​/Chief Patient Office; CPO

Job in Sheffield, South Yorkshire, S5, England, UK
Listing for: GSK
Full Time position
Listed on 2026-07-18
Job specializations:
  • Business
    Regulatory Compliance Specialist
Job Description & How to Apply Below
Position: Privacy Lead – R&D / Chief Patient Office (CPO)

Role Purpose

The Privacy Lead will serve as a trusted privacy advisor supporting Research & Development (R&D) and the Chief Patient Office (CPO) in embedding privacy-by-design across research, clinical development, patient‑focused activities, and emerging digital capabilities. Working in partnership with Legal, the Data Protection Office, Information Security, Data Governance, business process owners, and external stakeholders, the Privacy Lead will help ensure personal data is managed responsibly, ethically, and in accordance with applicable regulatory requirements.

This highly collaborative role requires strong influencing skills, sound judgment, and the ability to translate privacy requirements into practical, risk‑based solutions that enable scientific innovation while maintaining patient and participant trust.

Key Responsibilities
  • Support the R&D and CPO privacy strategy and contribute to the continued advancement of privacy‑by‑design principles across research and patient‑focused activities.
  • Provide privacy guidance and subject‑matter expertise to cross‑functional teams involved in clinical research, real‑world evidence, digital health, AI‑enabled initiatives, and patient engagement activities.
  • Partner with business leaders to identify privacy considerations early in project planning and operational execution.
  • Promote a culture of responsible data use and privacy awareness across R&D and CPO.
Risk Management & Governance
  • Lead and manage privacy impact assessments, privacy risk assessments, and related governance activities for processes involving personal data.
  • Maintain oversight of privacy‑related data inventories and records supporting regulatory compliance.
  • Track privacy risks, develop mitigation strategies, and support reporting to relevant governance forums.
  • Collaborate with stakeholders to drive continuous improvement in privacy controls, practices, and processes.
Compliance & Regulatory Support
  • Advise teams on the lawful, ethical, and responsible use of personal data across clinical trials, observational research, real‑world studies, and digital health initiatives.
  • Support interpretation and implementation of privacy requirements under UK GDPR, EU GDPR, US Data Protection and cross‑border data transfer frameworks.
  • Coordinate privacy‑related responses to incidents, individual right requests, audits, inspections, inquiries, and regulatory requests in partnership with Legal, Security, and Privacy Office colleagues.
  • Support governance activities associated with the use and reuse of human biological samples and other sensitive research data.
Stakeholder Engagement & Capability Building
  • Build strong partnerships across R&D, CPO, Legal, Information Security, Risk, Compliance, and external partners.
  • Develop and deliver privacy training, communications, and awareness initiatives.
  • Influence stakeholders at all levels through clear communication and practical problem‑solving.
  • Support privacy capability development across the organization through coaching, education, and knowledge sharing.
Basic Qualification
  • Bachelor’s degree in Law, Information Governance, Privacy, Computer Science, Life Sciences, or related discipline; or equivalent experience.
  • Significant experience in privacy, data protection, information governance, compliance, or related disciplines.
  • Experience conducting privacy impact assessments and privacy risk assessments.
  • Working knowledge of UK GDPR, EU GDPR, US Data Protection and cross‑border data transfer and privacy principles applicable to highly regulated environments.
  • Experience influencing stakeholders across a complex matrix organization.
  • Strong written, verbal, and presentation skills with the ability to explain complex concepts to non‑specialist audiences.
Preferred Qualification
  • Professional privacy certification such as CIPP/E, CIPM, CIPT, or equivalent.
  • Experience with in pharmaceutical, biotechnology, healthcare, clinical research, or other regulated industries.
  • Familiarity with global privacy regulations beyond UK/EU GDPR, US Data Protection including cross‑border data transfer requirements.
  • Experience supporting AI, advanced analytics, digital health, or innovative data‑driven…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary