Job Description/Responsibility
- A 1st line function to ensure coverage for all London business units regarding compliance with EU General Data Protection Regulation.
- Client Details
- A Global Bank.
- Description
- * Ongoing monitoring of Data Protection regulation and issuance of recommendations to ensure compliance;
- * Ownership and maintenance of the London GDPR Record of Processing Activities (evidentiary pack for the ICO) including the data inventory;
- * Review and regularly validate controls around the processing of special categories of data (passports held for client on boarding or staff new joiners) -
- * Act as London representative for ICO breaches and link to the Customer Resolutions Team and DPO in Melbourne;
- * Provide regular reporting to the various London Branch Governance Forums;
- * Provide advice and instructions on how to conduct Data Protection Impact Assessments (DPIAs);
- * Assist with completion of DPIAs including assessing the necessity and proportionality of the change, consider the measures to demonstrate compliance, assess the risk to the rights and freedoms of the data subject, consider the riskd to mitigate, monitor and review through the CDT and DRA processes;
- * Monitor data management procedures and compliance within the London Branch;
- * Participate in meetings with managers to ensure privacy by design at all levels;
- * Ensure we address all queries from data subjects within legal timeframes (e.g. DSAR, delete their information from records, if appropriate);
- * Liaise with other organisations that process data on our behalf;
- * Write and update detailed guides on data protection policies;
- * Perform audits and determine whether we need to alter our procedures to comply with regulations;
- * Manage the relationship with Iron Mountain including procedures, processes and invoicing.
- * Arrange for training on GDPR compliance for employees.
Experience Requirements
Education Requirements
Skills Requirements
- * Experience in data protection and legal compliance;
- * Good knowledge of GDPR and national data protection laws;
- * Knowledge of data processing operations within the Financial Services;
- * Familiarity with computer security systems;
- * Ability to handle confidential information;
- * Ethical, with the ability to remain impartial and report all non compliances;
- Have a detailed knowledge of Microsoft Office products in particular Word and Excel.
Compensation/Benefits
Apply Instruction