Data Protection Officer

£60000 - £70000 per annum, Benefits: Bonus and excellent benefits
27 Apr 2021
25 May 2021
Laura Leslie
Job Title
Financial Risk
Contract Type
Full Time
An International, PE backed business based in Cheshire is looking to appoint a new Data Protection Officer to oversee the management of the Group’s data privacy obligations and ensure legally compliant best practice. This is a fantastic opportunity where you will enjoy a collaborative culture in a fast-paced, upbeat, high-growth environment.

 As Data Protection Officer, you will be accountable for the following areas of responsibility:

Big Picture
• Complete understanding of the Group’s position as regards its compliance with data privacy laws
• Develop strategies and initiatives to ensure engagement with key stakeholders on data privacy
• Regular and ad hoc reporting on data privacy compliance within the Group
• Setting up a Data Privacy / Information Governance Committee

Overall Compliance
• Implementing (or where it already exists building upon) a privacy governance framework and measures to manage data use in compliance with data privacy laws
• Managing and conducting ongoing reviews of the privacy governance framework
• Monitoring changes to privacy laws and making, and driving forward, recommendations
• Coordinating, conducting and monitoring data privacy audits
• Risk management/issue spotting and resolving

Record Keeping
• Maintain records of all data assets and exports, and maintain a personal data security incident management plan to ensure timely remediation of incidents impacting personal data including impact assessments, breach response, complaints, claims or notifications

Policies, procedures and training
• Setting standards and reviewing policies and procedures
• Developing and delivering privacy training to various business functions and raising employee awareness of data privacy and security issues

Point person/administration
• Serving as the primary point of contact for data protection queries in the business
• Serving as the primary contract and liaison for the Information Commission and other EEA Data Protection Authorities and the Group’s designated representative in Europe on all data protection related matters
• Reviewing supplier contracts (including EU standard contractual clauses) and other third party data processing and data sharing arrangements
• Ensuring filing and fee requirements with local Data Protection Authorities are achieved
• Responding to and advising on data subject rights requests, including data subject access requests (DSARs) and other requests from individuals.

In addition, the Data Protection Officer role will involve:
• Working with the Group’s employees, consultants etc. in the review of operations and projects/initiatives and related data processing to ensure compliance with data privacy laws, and where necessary advising on and monitoring data protection privacy impact assessments
• Ensuring, with the Group’s IT team, that the Group’s IT systems and procedures comply with all relevant data privacy and protection law, regulation and policy (including in relation to the retention and destruction of data)
• Reviewing vendor contracts (including EU standard contractual clauses) and other third party data processing and data sharing arrangements in partnership with the Group’s IT team
• Assist the M&A team with security & data protection due diligence

To be considered you should have then following skills and experience:
• a minimum 5 years of data privacy experience/PQE;
• excellent knowledge of, and significant experience in applying, UK and EU data privacy laws;
• experience of conducting data privacy compliance reviews and audits and effecting necessary change; and
• experience in developing and delivering policy and compliance training

Ideally, you will also hold the following qualifications (albeit is not a requirement):
• Law degree or post-graduate legal qualification;
• Data protection qualification such as CIPP, CIPT, CIPM, ISEB etc.


Apply for Data Protection Officer

Already uploaded your CV? Sign in to apply instantly


Upload from your computer

Or import from cloud storage

Your CV must be a .doc, .pdf, .docx, .rtf, and no bigger than 1MB

4000 characters left

When you apply for a job we will send your application to the named recruiter, who may contact you. By applying for a job listed on GAAPweb you agree to our terms and conditions and privacy notice. You should never be required to provide bank account details. If you are, please email us.