Want to be part of a global business that is scaling rapidly, evolving fast and radically changing the decades old delivery universe? If so, read on, as we’re looking for a Data Protection Administrator to join our Edinburgh Legal team!
We’re leading the logistics revolution, powering deliveries across the UK for some of the nation’s biggest high‑street and online brands. Our depots are the backbone of our operation, ensuring seamless logistics and top‑notch service for our customers. Whether you’re handling parcels, coordinating routes, or managing depot operations, you will play a key role in maintaining our high standards and efficiency.
About the role
We are looking for a Data Protection Administrator who will support the organisation’s compliance with data protection legislation by managing the day‑to‑day handling of data subject rights requests.
This role is highly process‑driven and detail‑focused, with responsibility for supporting the end‑to‑end processing of a high volume of requests from individuals exercising their data protection rights. The role requires accuracy, consistency, and the ability to work to statutory deadlines while handling sensitive personal data appropriately. Hybrid – 2 days office, 3 days home working.
Location: Edinburgh Office Verdant 2, Redheughs Rigg South Gyle EH12 9DQ – Hybrid
Shift Pattern: Monday – Friday
Hours: 09:00 – 17:00 – 36.25hrs per week
Salary: Depending upon experience
What you’ll be doing
* Support the end‑to‑end handling of all data subject rights requests, including but not limited to:
o Data Subject Access Requests (DSARs)
o Data Erasure requests
o Data Rectification requests
* Maintain clear, organised records of all Data Subject Rights activity to support accountability and compliance reporting and record‑keeping.
* Prepare accurate and compliant responses to data subjects, ensuring responses are issued within statutory timeframes.
* Escalate complex, sensitive, or high‑risk issues to the Data Protection Officer as appropriate.
* Assist with identifying, retrieving, and collating personal data held across multiple internal systems to support responses to DSARs.
* Work closely with internal teams and system owners to gather relevant information within required timeframes.
* Compile data into response packs for final review by the Data Protection Officer.
* Ensure only relevant personal data is included in disclosures.
* Carry out initial reviews of retrieved data to ensure completeness, relevance, and accuracy prior to response.
* Conduct detailed and accurate redaction of sensitive or exempt information in line with UK GDPR requirements.
* Maintain accurate records of requests, actions taken, redactions applied, and deadlines to support audit and compliance requirements.
* Support the preparation of monthly metrics and reporting on request volumes.
* Contribute to the continuous improvement of DSAR processes, templates, and tracking methods.
What this role involves (Important to Know)
* Working through a high volume of requests on an ongoing basis across the wider group of companies.
* Searching through large datasets and multiple internal systems to identify personal data that falls within the scope of data subject rights requests.
* Adhering to structured processes, guidance, and checklists to ensure requests are handled accurately and in line with legal requirements.
* Performing precise, methodical work – no room for errors.
What we need from you
Essential
* Strong administrative skills with a high level of accuracy and attention to detail.
* Ability to search, review, and work through large datasets across multiple systems in a methodical way.
* Follow defined processes, procedures, and checklists consistently.
* Strong organisational skills and experience managing structured, case‑based work or high‑volume requests within set deadlines.
* Good written communication skills and the ability to record actions clearly and accurately.
* Work independently on repetitive tasks while maintaining accuracy.
Desirable
* Familiarity with UK General Data Protection Regulation or Data Protection principles.
* Experience working with CRM platforms, customer service systems, data or reporting tools.
* Experience in a data protection, compliance, legal, or regulatory environment.
* Familiarity with data subject rights under UK GDPR and the Data Protection Act 2018.
* Experience supporting or processing data subject rights requests (DSARs) is highly desirable.
* Experience maintaining logs, trackers, or case management systems.
Personal Attributes
* Highly detail‑focused, with a careful and methodical approach to work.
* Comfortable working through repetitive, accuracy‑critical tasks.
* Well organised, with the ability to manage multiple requests and deadlines simultaneously.
* Professional, discreet, and trustworthy when handling sensitive and confidential information.
* Calm and resilient when working under time pressure or with high workloads.
* Ability to work independently while recognising when issues need to be escalated.
* Proactive and conscientious, with a strong sense of responsibility for accuracy, deadlines, and data handling.
Benefits
* Build a secure future with a competitive Pension Scheme.
* Peace of mind with Life Insurance.
* Stay active with our Cycle2Work scheme.
* Get the support you need with our Employee Assistance Program.
Application Process
We pride ourselves on our candidate experience. We will try our best to get back to you within a few days to let you know if we’d like to take you to the first stage, which usually involves a 20‑30 minute chat with our Talent Team. If you are successful, there will generally be another two stages, including a site visit.
Throughout our process, you will meet a cross‑section of our friendly team members to understand our culture, the role, team, and business. Your talent partner will guide you through each stage.
At InPost, we love uniqueness. Our strength is our people. We strive to create an open, equal, inclusive environment in which everyone can flourish and be themselves.
#J-18808-Ljbffr