||City of London
Data privacy is a key priority for the organisation. The Data Privacy Manager is new, highly visible and important role in an expanding team, and presents a great opportunity to make a positive impact and develop data privacy experience and skills in a supportive environment. The right candidate will have opportunities to work with all parts of the business, and to be part of an exciting new data strategy and digital service expansion.
Day to day operation of the Data Privacy function, supporting the DPO to provide advice in line with data protection policy, industry guidance, and data protection legislation
Responsible for day-to-day operation of the Record Management policy and supporting implementation of the firm’s new retention schedule
Work with the Change Programme teams to carry out Data Protection Impact Assessments and identify data protection risks
Work with internal stakeholders to ensure 3rd party suppliers meet data protection standards.
Co-ordinate responses to Subject Access Requests and data protection queries from clients and employees
Supporting management of data incidents and breaches, in line with data protection requirements
Liaise with the ICO on behalf of the firm
Ensure marketing practices compliant with PECR and firm policy
Develop and operate processes and procedures for data protection compliance activities, including reporting on compliance risks
Maintain organisation’s Record of Processing Activity
Produce guidance and training on data protection
Secretariat for Data Privacy Group
General Associate responsibilities
Find opportunities to proactively support and share knowledge with others for the benefit of the team.
Prioritise workload and identify when support is needed to achieve goals.
Identify and escalate issues as they arise and suggest solutions for resolution.
Assess when to deal with an issue or when to seek involvement of a colleague (including line manager).
Higher level qualifications such as A Levels or Degree (or equivalents) are desirable.
Data protection qualification highly desirable.
Compliance qualification desirable
Skills & Experience
Demonstrates strong interest in data privacy and data protection, and an ethical approach to data use
Demonstrates good technical knowledge of regulations, and practices related to data protection and privacy (highly desirable)
Knowledge of data protection law, PECR, and ICO guidance and experience of applying these in practice (highly desirable)
Knowledge of records management practices and experience in same highly desirable
Experience of communicating with regulatory bodies, and clients
Analytical with a talent for problem solving
Communicates professionally with stakeholders, building positive relationships.
Excellent administration, planning and organisation skills.
Excellent attention to detail.
Passion for continuous improvement.
Ability to work under pressure and meet deadlines.
Prior relevant industry experience in for example Financial Services desirable but not essential.