Position: Group Data Protection Officer
Location: Hybrid (UK-based, preferably within commuter distance from Manchester)
Type: Full-Time
About Us:
We are the tech company with people at heart.
At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services.
Position Overview:
Advania UK Group are committed to ensuring that ours and our clients data is protected and that our work complies with UK GDPR and Data Protection Legislation. We're seeking a Data Protection Officer to help develop our processes for the management of potentially sensitive information, conduct regular internal DP audits, and serve as the main point of contact between the business, data subjects and the Information Commissioner's Office (ICO).
Responsibilities:
Provide expert advice and educate our colleagues on important data compliance requirements.
Identify and evaluate, maintain and update the records of all data processing activities of the company (ROPAs).
Collaborate with key stakeholders to draft new and amend existing internal and external data protection policies, guidelines, procedures, Incidents & Risks.
Implement measures and a privacy governance framework to manage data use in compliance with the GDPR, including developing templates for data collection, assisting with data mapping and the deletion and/or return of data (Data Retention).
Conduct data security audits to maximise data security, ensure compliance and to address potential issues.
Serve as point of contact for data protection authorities.
Monitor our ongoing ability to remain data compliant.
Monitor data management procedures and compliance within the business.
Participate in meetings with managers to ensure privacy by design and default at all levels.
Maintain necessary registers including but not limited to; Data Protection Impact Assessments, Transfer Impact Assessment & Legitimate Interest Assessments.
Ensure we address all queries from data subjects within legal timeframes (Subject Access Requests).
Liaise with other organisations that process data on our behalf and conduct annual reviews of key/critical suppliers.
Advise and consult with senior leaders regarding data protection strategy and implementation of data security laws.
Enhance processes on dealing with privacy breaches.
Develop further training programmes on GDPR compliance for targeted teams within the business.
Follow up with changes in law and issue recommendations to ensure compliance.
Attend Advania Group GDPR Forum as UK Group representative and implement required outputs.
Collaborate with Stakeholders to maintain and enhance the Technical and Organisational Measures to protect personal data.
Provide timely information and cooperation to the business when dealing with security incidents including post incident reports.
Support the Legal and GRC teams with reviewing and negotiating data protection requirements in contracts including reviewing DP agreements.
Support GRC Team and Bids with Client and Supplier questionnaires and Audits. · Support Company Frameworks and ISO Certifications. Qualifications & Experience:
Proven experience working in a similar role in the same industry/sector
Expert Knowledge of the UK GDPR and other Data Protections Laws
Experience of completing and monitoring Data Protection Impact Assessments
Ability to prioritise and focus on the riskier activities
Strong analytical skills and attention to detail
Excellent communications skills both written and verbal
Excellent attention to detail
High degree of organisation, task planning and time management ·
Good IT skills #LI-Hybrid,
The budgeted salary for this role is between £85,000 - £125,000
Hybrid working:
This hybrid role, with a remote-first emphasis, necessitates being in the office or at a client site for 4 days each month. Each team within our organisation can decide how to implement this policy. If you have any questions after applying, please reach out to our recruitment team.
Our Selection Process:
We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law.
Please do let us know if you'll need any reasonable adjustments as part of the selection process by highlighting these on your application form.
As part of our commitment to our clients we will need to carry out background checks, including a criminal record check, for all offers of employment. If you have any unspent criminal convictions or questions about the screening process, please notify your recruiter once the application has been submitted