Data Protection Associate
Location: Must be happy travelling to Hertfordshire, UK (Hybrid: 3 days in-person / 2 days remote)
Employment Type: Full-time, Permanent
About the Role
We are seeking a proactive and detail-oriented Data Protection Associate to support data protection and privacy compliance across the EMEA region. This is a great opportunity for someone who enjoys working with diverse teams, navigating complex regulations and contributing to a strong culture of privacy and compliance.
What You’ll Do
* Lead and manage a range of privacy assessments (e.g., DPIAs, TIAs, AI assessments, LIAs, vendor reviews) and maintain accurate GDPR-required data registers.
* Oversee the privacy helpdesk, support compliance reviews, and provide clear, practical advice to stakeholders across EMEA.
* Deliver privacy training, update policies/SOPs, and ensure processes reflect current legal and regulatory requirements.
* Support incident and breach management, handle data subject requests, and monitor emerging privacy and AI legislation.
* Collaborate on team projects and contribute to ongoing improvements in privacy operations and compliance.
What You’ll Bring
* 3–5 years’ data protection experience with strong knowledge of GDPR/UK GDPR and hands-on experience using privacy tools such as OneTrust.
* Skilled in conducting privacy assessments, with understanding of AI governance and ideally experience in the pharmaceutical/life sciences sector.
* Excellent communication, stakeholder engagement, and organisational abilities, comfortable working in a cross-functional, fast-paced environment.
* Detail-oriented, proactive, resilient, and able to manage multiple priorities while building strong collaborative relationships.
* Additional languages and wider global privacy knowledge are advantageous.