Great vacancy Data Protection Officer hiring now

Applicant Portal


Job Details: Data Protection Officer

Full details of the job.

Data Protection Officer
£60,000 - £70,000
Sykes Cottages is looking to appoint a new Data Protection Officer at its Chester office to oversee the management of the Sykes’ group’s data privacy obligations and ensure legally compliant best practice.

Sykes Cottages requires applicants to have:
• a minimum 5 years of data privacy experience/PQE;
• excellent knowledge of, and significant experience in applying, UK and EU data privacy laws;
• experience of conducting data privacy compliance reviews and audits and effecting necessary change; and
• experience in developing and delivering policy and compliance training

Sykes Cottages would also like (albeit is not a requirement) applicants to have the following:
• Law degree or post-graduate legal qualification;
• Data protection qualification such as CIPP, CIPT, CIPM, ISEB etc.
Sykes’ Data Protection Officer will be accountable for the following areas of responsibility:

Big Picture
• Complete understanding of the Group’s position as regards its compliance with data privacy laws
• Develop strategies and initiatives to ensure engagement with key stakeholders on data privacy
• Regular and ad hoc reporting on data privacy compliance within the Group
• Setting up a Data Privacy / Information Governance Committee

Overall Compliance
• Implementing (or where it already exists building upon) a privacy governance framework and measures to manage data use in compliance with data privacy laws
• Managing and conducting ongoing reviews of the privacy governance framework
• Monitoring changes to privacy laws and making, and driving forward, recommendations
• Coordinating, conducting and monitoring data privacy audits
• Risk management/issue spotting and resolving

Record Keeping
• Maintain records of all data assets and exports, and maintain a personal data security incident management plan to ensure timely remediation of incidents impacting personal data including impact assessments, breach response, complaints, claims or notifications

Policies, procedures and training
• Setting standards and reviewing policies and procedures
• Developing and delivering privacy training to various business functions and raising employee awareness of data privacy and security issues

Point person/administration
• Serving as the primary point of contact for data protection queries in the business
• Serving as the primary contract and liaison for the Information Commission and other EEA Data Protection Authorities and the Group’s designated representative in Europe on all data protection related matters
• Reviewing supplier contracts (including EU standard contractual clauses) and other third party data processing and data sharing arrangements
• Ensuring filing and fee requirements with local Data Protection Authorities are achieved
• Responding to and advising on data subject rights requests, including data subject access requests (DSARs) and other requests from individuals.

In addition, the Data Protection Officer role will involve:
• Working with Sykes group employees, consultants etc. in the review of operations and projects/initiatives and related data processing to ensure compliance with data privacy laws, and where necessary advising on and monitoring data protection privacy impact assessments
• Ensuring, with the Group’s IT team, that the Group’s IT systems and procedures comply with all relevant data privacy and protection law, regulation and policy (including in relation to the retention and destruction of data)
• Reviewing vendor contracts (including EU standard contractual clauses) and other third party data processing and data sharing arrangements in partnership with the Group’s IT team
• Assist the M&A team with security & data protection due diligence
Previous MonthNext Month