Data Protection Manager - Law Firm – Central London / Hybrid - £65k - £80k (DoE) benefits We are on the hunt for an experienced Data Protection / Privacy Manager, with extensive knowledge of UK and EU data protection laws (including GDPR) and ideally a professional certification in data protection, to join a successful law firm in Central London. The Data Protection Manager will utilise their extensive knowledge and experience in data protection to manage and oversee all data protection and privacy protocols for the firm and ensure compliance with all regulations, including UK GDPR. What’s on offer: Our client is offering a competitive salary together with a flexible benefits scheme which includes 25 days annual leave, pension scheme, private healthcare, discretionary bonus scheme, enhanced maternity/paternity leave and much more Hybrid working is offered. Key responsibilities will include: Maintaining a data privacy governance framework in compliance with UK GDPR Managing records of data processing activities Managing a risk-based vendor management review process Undertaking Data Protection Impact Assessments (DPIAs) Managing necessary documentation and evidence for internal and external auditors Reviewing and negotiating data protection clauses in contracts with external parties Developing and delivering training programs regarding data protection and privacy Keeping up-to-date with data protection laws and regulations and updating policies and procedures as required Working with Info Security to ensure data protection measures are integrated Managing data breach response and reporting processes Collaborating with practice teams and assisting with drafting and reviewing data protection clauses in client contracts And more. What we’re looking for: Extensive knowledge of UK and EU data protection laws including GDPR Professional certification in data protection (i.e. CIPP/E, CIPM, CIPT) is highly advantageous Strong understanding of the regulatory framework constituted by the Data Protection Act, the UK GDPR and the SRA guidelines Proven experience in a similar role, ideally within a law practice (or professional services organisation) Experience with data protection impact assessments and data mapping Strong understanding of the importance of client confidentiality, information security principles, GDPR and data protection laws Excellent skills in creating and amending organisational policies and procedures Excellent communication skills at all levels and with non-technical colleagues Forward-thinking and collaborative approach Interested in this great opportunity? If you have extensive senior experience in Data Protection and Privacy and are looking for an exciting new role, we’d love to hear from you Please ensure your CV showcases your expertise and capabilities and submit it ASAP, quoting ‘LO - Data Protection / Privacy Manager - London