Data Protection Officer

Rev & Regs are recruiting for a Data Protection Officer position for a large multinational Financial Services company in Leeds.

The regulatory importance of this role requires the DPO to report directly to the highest management level of an organisation. Therefore, the DPO will report to the Country Head for the UK and the Global Head of Data Privacy. The DPO will also be designated for other UK legal entities in the Group who are required to designate a DPO. The DPO will report on a regular basis to the boards of each relevant legal entity.

The successful candidate will liaise with relevant stakeholders, including SMF16s, Designated Persons, Conducting Officers, MLROs as well as senior leadership within each of the UK legal entities in the Group. The UK DPO will also work closely with other Data Protection, legal and IT colleagues within the organisation.

Responsibilities:

• Advise and guide the business in its assessment of the Data Protection risks in processes related to delivery of products and services or general running of the business.
• Inform and advise the controller, the processor and their employees of their obligations.
• Advise and monitor performance of Data Protection Impact Assessment (DPIAs).
• Oversee the annual review of the Records of Processing Activities with each data owner in each legal entity.
• Support, encourage and contribute to the education and enhancement of Data Protection awareness of employees. Ensure this covers their obligations under the UK GDPR and the Data Protection Act, 2018.
• Monitor the firm’s compliance with Data Protection legislation, including UK and EU GDPR and PECR.
• Co-operate with the supervisory authority and act as the central point of contact with Supervisory Authorities.
• To participate with cross jurisdictional Data Protection working groups and initiatives in developing global policies, procedures, processes, guidance and best practice.

Experience:

• Expertise in UK Data Protection Laws and practices and an in-depth understanding of the UK GDPR and the Data Protection Act, 2018.
• 5 years of experience in Data Protection program management and leadership.
• Demonstrated leadership and project management experience.
• Extensive experience in financial services, preferably Asset Management with an understanding of the ACD and TA sectors.
• Ability to communicate effectively with the highest levels of management and decision-making within the organisation.
• Familiarity with Data Protection and security risk assessments and best practices, Data Protection infrastructure and financial services technology environment
• Ability to communicate effectively with data subjects, Data Protection authorities and other controllers and processors across national boundaries and cultures.

Salary: £70,000-£80,000 plus bonus

Location: Hybrid (3 days per week in Leeds City centre office)