Job summary
- Main area
- ICT
- Grade
- DSFS Grade A
- Contract
- Bank
- Hours
- Flexible working - 0 hours per week
- Job ref
- 166-DSFS-7441669
- Employer
- Derbyshire Support Facilities Services
- Employer type
- NHS
- Site
- DSFS-Chesterfield Royal Hospital
- Town
- Chesterfield
- Salary
- £23,875 pro rata per annum
- Salary period
- Yearly
- Closing
- 14/09/2025 23:59
Employer heading
Subject Access Request Assistant
DSFS Grade A
Job overview
The post holder will provide specialist administrative support for the management of Subject Access Requests (SARs) under the Data Protection Act (2018) and UK GDPR, as well as requests under the Access to Health Records Act. This will include the retrieval, preparation, redaction, and disclosure of health records, ensuring that requests are processed lawfully, accurately, and within statutory deadlines.
The role requires excellent attention to detail, a sound understanding of confidentiality and data protection principles, and effective communication with patients, families, solicitors, coroners, and other stakeholders.
Derbyshire Support and Facilities Services Limited currently do not offer a Certificate of Sponsorship, any applications which require sponsorship will not be considered
Main duties of the job
• Manage the receipt, logging, and acknowledgement of Subject Access Requests in line with published policy and statutory requirements.
• Retrieve, copy, and prepare patient records, ensuring accurate redaction of third-party or sensitive information not subject to disclosure.
• Ensure that requests are completed and dispatched within strict statutory timeframes (as per the service SLAs).
• Liaise with clinical and non-clinical staff to obtain supporting information where required.
• Provide clear, professional written and verbal communication with patients, relatives, and external requestors (e.g. solicitors, police, coroners).
• Maintain a robust audit trail of all SARs processed to demonstrate compliance with legislation and internal policies.
• Use the Trust’s electronic health record systems and databases to track, retrieve, and record case progress.
• Handle telephone, email, and in-person enquiries courteously and effectively, escalating complex cases when necessary.
• Support the wider Information Governance / Health Records team in meeting regulatory compliance and good practice standards.
• Always ensure confidentiality and information security, in line with NHS policy and the Caldicott Principles.
Working for our organisation
Derbyshire Support and Facilities Services Ltd. (DSFS) is a subsidiary company that’s 100% owned by Chesterfield Royal Hospital NHS Foundation Trust.
DSFS has just over 900 staff across Soft and Hard Facilities Services, and our corporate services including, ICT, Patient Records, Switchboard, Procurement, Finance and Clinical Engineering. Very much part of the ‘Chesterfield Royal family’, DSFS builds on solid NHS foundations to offer a more commercial approach that’s dynamic, flexible, and proactive.
DSFS are proud to be striving to achieve a truly diverse and inclusive flexible workforce by valuing and welcoming everyone’s abilities, uniqueness, and individuality. All our colleagues have the right to and should be able to feel 100% themselves at work; we believe that all our people add to and should improve our culture and not just fit in with it. By embracing our diverse backgrounds and differences our culture becomes richer and makes us stronger together.
Derbyshire Support and Facilities Services Limited currently do not offer a Certificate of Sponsorship, any applications which require sponsorship will not be considered
Please see below link for the DSFS website.
DSFS - Derbyshire Support & Facilities Services Limited | DSFS
When applying for roles please complete all sections of the application form.
Detailed job description and main responsibilities
Please see the Job description and Person Specification in the attachments. This document contains a full detailed description of the role and what the main responsibilities and duties are along with the criteria that are required.
Person specification
Qualifications and Training
Essential criteria
- GCSEs in English and Maths (Grade C / 4 or above)
Desirable criteria
- Training or qualifications in information governance, data protection, or records management
Experience
Essential criteria
- Previous administrative experience in an office or healthcare environment
- Experience of handling sensitive and confidential information
Desirable criteria
- Experience of working with patient records and/or processing subject access requests
Skills and Knowledge
Essential criteria
- Good IT skills, including Microsoft Office and electronic records systems
- Ability to apply knowledge of the Data Protection Act, UK GDPR, and Access to Health Records Act
- Strong written and verbal communication skills
- Excellent attention to detail and accuracy
- Ability to prioritise workload, manage deadlines, and work under pressure
Desirable criteria
- Knowledge of NHS record-keeping systems (e.g. System C Careflow PAS, Civica Cito, Nervcentre EPR)
Personal Attributes
Essential criteria
- Ability to work both independently and as part of a team
- Professional, reliable, and approachable manner
- Flexible and adaptable to meet service needs
- Committed to upholding confidentiality and data protection principles
- Willingness to undertake training and development
Demonstrates DSFS Values
Essential criteria
- Responsive – Reliable – Resourceful – Respectful
- Service Excellence Through Our People
Employer certification / accreditation badges
Applicant requirements
This post will require a submission for Disclosure to be made to check for any unspent criminal convictions.
Documents to download
Further details / informal visits contact
- Name
- Eddie Lewis
- Job title
- ICT Quality & Governance Manager / DPO
- Email address
- [email protected]
- Telephone number
- 01246 513 199
List jobs with Derbyshire Support Facilities Services in Administrative Services or all sectors