As a Data Protection Officer, you will be responsible for the development, implementation and enforcement of policies, procedures and practices necessary to ensure that the company complies with all applicable EU, regional and other privacy laws and regulations and conforms to industry best practices.

Key responsibilities:

• Act as Group expert in relation to data protection matters. Implementing measures and a privacy governance framework to manage data use in compliance with data protection laws including the General Data Protection Regulation (GDPR)
• Working with key internal stakeholders in the review of projects and new systems to be implemented to ensure compliance with EU and local data privacy laws and, where necessary, complete and advise on Privacy Impact Assessments
• Serving as the primary point of contact for all data protection related matters under the GDPR
• Reviewing, drafting and advising on contracts with suppliers (including Model Clauses) to implement projects in partnership with HR, Procurement, Information Security and Sales/Marketing teams
• Chairing the Data Protection Committee
• Monitoring compliance with the Group’s Policies and Procedures and providing updates on the data protection compliance programme to senior management
• Responsible for data mapping, carrying out regular audits and maintaining the data register
• Updating and rolling-out of training to staff to raise awareness of data protection and foster a data privacy culture within the Group
• Working with the Information Security team to ensure that systems and procedures comply with all relevant data privacy and protection laws, regulation and policy
• Cooperating with relevant supervisory authority including in the event of any data breach which may need to be notified to the relevant authorities within 72 hours
• Advising in relation to data retention and deletion

Requirements:

• Preferably you will hold a Data Protection and/or Privacy certification, such as CIPT/CIPM/CIPP/E
• Experience in a similar compliance role
• Expert knowledge of data privacy legislation including GDPR
• Knowledge of cyber security risks and information security standards
• Ability to audit data management systems would be an advantage
• Strong analytical skills and judgement

If you are interested in finding out more about the opportunity – please email [email protected] with an up to date copy of your cv.