Head of Privacy

Full Time - Permanent
- 40 hour working week within a flexible WFH model
- Opportunity to work from our Chatswood office
- Health Manager Level 5 - $166,678 - $186,448 pa + 11.5% Super and annual leave loading

**About us**

Working at eHealth NSW is more than a job. Every day, we set out to design, build and innovate world class digital solutions that will transform how healthcare is delivered to patients across NSW. It’s a genuine opportunity to join a team of technology professionals, health partners, industry leaders and academia to develop solutions that help save and improve people’s lives.

**Come work with us**

We have an exciting opportunity in the Office of the Chief Executive as our Head of Privacy.

The Head of Privacy oversees eHealth NSW's privacy compliance and government information public access functions. The role ensures compliance with regulatory frameworks including Privacy and Personal Information Protection Act 1988 (PPIP Act), Health Records and Information Privacy Act 2002(HRIP Act), and Government Infromation (Public Access) Act2009 (GIPA Act), undertakes compliance reporting, and leading resources and capability development across the organisation.

You will enjoy:

- Leading a well-established high performing and collegial Privacy team.
- Working with stakeholders across eHealth NSW to provide privacy compliance advice on a wide range of digital solutions that support organisational and clinical staff deliver quality.
- Having the opportunity to contribute to the implementation of the Single Digital Patient Record.

For more information, read the full Role Description.

**What you will do**

As an integral member of the Privacy team, you will:

- Lead and implement the eHealth NSW privacy program, providing specialised and accurate advice and Executive and operational level managers, responding to and managing change in business practices, policies, regulations and privacy legislation to enable privacy practices that minimise risk and ensure the confidentiality of information across eHealth.
- Lead, develop, review and enhance information privacy policy, practice and processes for eHealth NSW ensuring all new and inflight eHealth NSW programs and services are supported and compliant with legislative and organisational requirements.
- Engage with executive and senior eHealth stakeholders, Ministry of Health’s Legal & Regulatory and Privacy & Compliance teams and other NSW Health Privacy Contact Officer networks, providing specialised advice and guidance on managing complex, sensitive, or non-routine matters, policies, processes, and agreements to support adoption and compliance of legislative requirements.
- Manage resources and research, identifying and assessing privacy risks, developing privacy impact assessments, investigating and managing privacy incidents and complaints to ensure prompt resolution and compliance within policy and legislative framework.
- Develop, and implement a continuous improvement approach to privacy process and practices across eHealth NSW, which includes monitoring, evaluation, and reporting, supported by coaching, training and education, to drive a workplace culture of transparency and accountability.
- Proactively manage strategic and operational aspects relating to eHealth NSW’s statutory responsibilities under the GIPA Act, the Health Records & Information Privacy Act and the Privacy and Personal Information Protection Act, including making assessments, undertaking internal reviews and investigations, investigating appeals, and producing annual reports in accordance with legislated requirements.
- Develop and maintain sustainable and productive relationships and communication with senior eHealth NSW, Ministry and NSW Health staff and other key stakeholders as part of providing quality, timely professional advice and action in relation to privacy-related issues.
- Provide operational and strategic support to the Director and represent eHealth NSW on internal and external committees focusing on GIPA and privacy-related matters concerning policy, practice and organisational capability to facilitate information flow and the meeting of objectives and enhance the profile of the GIPA and privacy function.

**About you**

We are seeking motivated and committed individuals with:

- Qualifications in relevant discipline and/or experience in the management of GIPA and privacy with substantial experience in interpreting complex legislation such as GIPA, Personal Information Protection Act, the Health Records & Information Privacy Act and administrative decision-making principles and practices.
- Excellent communication skills and preferably have delivered Privacy Workshops and uplift for Privacy across an organisation or division.
- If this sounds like you and you’re looking for a rewarding new opportunity, we would love to hear from you._

**Benefits working with eHealth**

Our people are at the heart of who we are. We are committed to a workforce that refle