JOANNE RISEBOROUGH

As Group Director, I lead a team of approximately 80 colleagues to deliver the Group’s strategic data agenda, with a focus on enhancing data capabilities across Lloyds Banking Group and its subsidiaries. With a remit that spans Data Quality, Data Products, Metadata, Master Data, and Reference Data. My execution is underpinned by a strong control

environment, with a self-service data consumption model that supports scalable and consistent data use.

This is aligned with the strategy of delivering positive outcomes for Customers and Colleagues, and the business goal of federated accountability to enable productivity.

Key Responsibilities:

Ø Drive the organisation’s ambition to become the most data-literate bank globally by embedding data literacy and cultural change across all areas of the Group - from frontline staff to C-suite.

Ø Establish and embed foundational data management principles that enable consistent, value-driven data use across the Group.

Ø Develop and maintain a robust Data Policy and control framework to ensure regulatory compliance and operational integrity, whilst serving the needs of our XX million account holders.

Key Achievements:

Ø Delivered board-level data management priorities, including comprehensive remediation of data quality issues and enhancements to the Group’s control environment.

Ø Orchestrated the resolution of data issues across 40 platforms, acting as the senior representative and advocate for data quality improvement.

Ø Exceeded Group-wide targets for data management controls and data quality metrics, directly contributing to improved operational efficiency and customer outcomes.

Ø Designed and implemented upskilling programmes for directors and senior technical leaders, strengthening organisational capability in data management and artificial intelligence.

Held senior accountability for data governance, privacy, and records management across Aviva’s UK Life, Savings & Retirement businesses. Provided strategic leadership to data teams and played a pivotal role in embedding data risk awareness and regulatory compliance across the organisation.

Key Responsibilities:

Ø Directed data governance, privacy, and records management functions across multiple UK entities, ensuring alignment with corporate and regulatory standards.

Ø Acted as operational sponsor for the Group’s General Data Protection Regulation (GDPR) programme, working closely with the UK Data Protection Officer to ensure compliance and readiness.

Ø Developed and embedded enterprise-wide data governance frameworks, engaging data role holders to strengthen data capabilities and risk management practices.

Ø Designed and implemented processes to fulfil Data Subject Rights, ensuring high-quality customer service and regulatory adherence.

Key Achievements:

Ø Strengthened the organisation’s data risk posture by embedding a culture of accountability and improving data governance maturity across business units.

Ø Led the response to major data incidents, managing breach investigations and enhancing organisational resilience through improved incident response planning.

Ø Delivered measurable improvements in data privacy operations, including streamlined fulfilment of subject access requests and enhanced customer trust.

Led both the Financial Crime and Data Governance teams within Aviva’s UK General Insurance business, overseeing key risks, controls, and regulatory obligations. Held accountability for delivering financial crime compliance, including sanctions screening, internal fraud, and anti-bribery controls. During this time, I served as Senior DPO with responsibility for privacy risk, breach management, and data rights fulfilment. Delivered a comprehensive data strategy, governance framework, and data mapping capability to strengthen organisational resilience and regulatory alignment.