Senior Data Privacy Analyst
Waterloo - Hybrid Working
Full Time
Permanent
Grade 4
At Currys we’re united by one passion: to help everyone enjoy amazing technology. As the UK’s best-known retailer of tech, we’re proud of the service our customers receive – and it’s all down to our team of 25,000 caring and committed colleagues. Working as one team, we learn and grow together, celebrating the big and small moments that make every day amazing.
The Senior Data Privacy Analyst will join the Data Management team as part of the Privacy project assurance workstream. In this role, they will work closely with programmes/projects to identify potential privacy/compliance challenges and ensure Privacy by Design principles are adhered to in the end-to-end delivery of projects/suppliers for Currys.
Role Overview
You will have Ownership and Accountability for:
* Managing the cross-functional privacy review process for new programmes across the UK&I.
* Communicating privacy decisions and ensuring they are properly implemented.
* Lead and support the completion of privacy risk assessments such as DPIAs, LIAs, TIAs and AI risk assessments.
* Completing third party vendor privacy assessments, reviewing data sharing agreements and data protection clauses.
* Facilitate discussion and coordination among business owners, solution architects and privacy stakeholders across the company.
* Track and document project updates, risk mitigations and key decisions.
* Support on-going operational assurance.
* Close collaboration with the Data Protection Office to ensure effective management of data protection, privacy risks and controls.
* Assist with the investigation, evidence gathering and reporting of data incidents.
* Management responsibilities for one offshore Data Privacy Analyst.
* Assigning incoming projects, tracking and reporting on project statuses, providing support where needed.
* Support the continuous improvement of the privacy framework.
* Keep up to date on current and emerging trends and changes in legislation within the area of Data Privacy and applicability to the organization.
Experience Required
* Expert knowledge of local Data Protection legislation (DPA 2018, PECR, GDPR) and how this impacts business operations.
* Strong understanding of Privacy by Design and how to implement this concept within processes, systems and dataflows.
* Relevant experience, minimum 3 years, in a data privacy, data protection role or similar field.
* Proven ability to analyse problems, identify core issues and recommend appropriate solutions.
* Strong organisational skills with the ability to prioritise multiple projects to meet deadlines.
* Ability to liaise with and influence multiple stakeholders with different requirements.
* Demonstrable knowledge and experience in:
o Privacy impact assessments
o Privacy incident response
* Broad experience of regulatory changes and implementations of information governance programmes.
* Experience with privacy management tools such as One Trust is a plus.
Qualifications
* University degree, desirable.
* Recognised privacy qualification, preferably CIPM and/or CIPPE certification, desirable.
We are committed to making inclusion and diversity part of everything we do. If you need assistance with your application, please email careers@currys.co.uk.
#J-18808-Ljbffr