Data Protection Officer

Key Responsibilities:

• Develop and execute data protection compliance work including GDPR compliance activities, data protection impact assessments, data mapping services to aid in addressing risk management issues that comply with GDPR requirement.

• Support the investigation of Personal Data Incidents and Breaches that may occur and assist with identifying mitigation requirements to prevent similar incidents in the future.

• Support regular briefings for business and assist with key reports to senior levels of the organisation. Work closely with other stakeholders within the business units, including IT, Marketing, Online, Human Resources and Operations to improve internal controls around data protection.

• Oversee training and raising awareness internally on data protection and privacy, across all office locations

• Managing subject access right (SAR) requests and customer queries/complaints.

• Maintain procedures and SLAs for managing data access requests, right to be forgotten requests and recording all relevant information on the internal database Liaising with other departments to collect all data necessary to meet SLAs.

• Building knowledge of SAR exemptions to ensure exemptions are applied correctly.

• Continuously reviewing subject rights requests procedures to ensure adherence to all requirements and to drive continuous improvement in existing processes.

• Contributing to internal data protection related projects, to ensure organisational compliance with all processes and procedures, including internal training of staff interfacing with Data Protection.

• Building a solid knowledge of data protection to become a Subject Matter Expert in the area.

• Continuous monitoring of external and internal business environment to ensure data protection responsibilities are understood and internal controls are amended to support compliance if necessary.

• Act as Key Function within the Department

Essential Skills and Qualifications:

• The ideal candidate should have at least 2 years experience in Data Protection and keen interest in advancing in Privacy and Data Protection, along with familiarity with international privacy regulations. Data Protection, along with familiarity with international privacy regulations.

• They should be capable of working independently and taking initiative to produce results. Strong organizational and collaboration skills are essential for working effectively with colleagues and peers

• The role involves collaboration across different functions and jurisdictions. Key skills include technical proficiency in data protection, meticulous attention to detail, and the ability to influence senior leaders and peers.

• Excellent verbal and written communication skills are required, along with confidence in engaging with business stakeholders.

• Essential qualifications include professional certification in data protection law (CIPP/E), program management (CIPM), or Technology (CIPT) from the International Association of Privacy Professionals or equivalent.

• A strong program management mindset, technical aptitude, analytical skills, and commercial awareness are also important.