As a Data Privacy SME within the Risk & Compliance team, you'll provide support and consultancy to the company, ensuring compliance with data privacy and protection laws.
Responsibilities
-
Culture & Compliance: Collaborate with the Data Protection Officer (DPO) to promote a data privacy culture and ensure the company's compliance, especially as a Data Controller.
-
Regulatory Records: Assist the DPO in maintaining records, including ICO registration, data processing records, and privacy impact assessments.
-
Regulatory Monitoring: Track and analyse regulatory changes from ICO, FCA, and the EU, advising the business on their impact.
-
Relationship Management: Support stakeholders in managing data privacy risks, liaising with clients, auditors, and third parties as needed.
-
Team Collaboration: Share insights for cross-team development, support team objectives, and maintain regulatory compliance.
-
Personal Effectiveness: Manage workload, communicate effectively, stay calm under pressure, and adapt to change.
-
Risk & Compliance Oversight:
-
Advise on data privacy controls, working with teams to ensure compliance in areas like security, privacy policies, and supplier management.
-
Oversee new business initiatives and data privacy assessments.
-
Provide oversight of HR's personal data mapping and records of data processing.
-
Oversee Legal and Procurement functions to ensure compliance with data protection agreements.
Performance Assessment
- Ensure compliance with UK data privacy regulations.
- Build awareness of data privacy within the company.
- Maintain positive relationships with stakeholders.
Experience Required
- Experience in data protection oversight, consultancy, or GDPR roles, ideally in financial services.
- Strong knowledge of GDPR, UK DPA, and FCA regulations.
- Legal background and relevant qualifications are advantageous.
- Excellent communication and relationship management skills.