Data Protection Executive Application Deadline: 27 June 2025
Department: [SBSS] Data Protection
Employment Type: Permanent - Full Time
Location: Bristol
Reporting To: Jon Wing
Compensation: Up to £38,000 / year
Description We are hiring for a Data Protection Executive to take a crucial role within our Data Protection team, ensuring that SBG’s data protection framework is robust, compliant, and effectively implemented. This role is pivotal in safeguarding the organisation's data assets and maintaining the trust of our customers and stakeholders. By supporting the development and compliance of data protection standards and processes, the Data Protection Executive will contribute to the overall security and reputation of the company.
What you'll be responsible for: Support the DPO and Data Protection team in developing and implementing data protection standards and processes. This provides compliance with developing legislation and business trends, enhancing the organisation's security posture.
Review internal policies and procedures to ensure they align with current and developing legislation and regulations to mitigate compliance risks.
Manage and assess data protection assessments of new projects, initiatives, and business processes via DPIAs and other data protection assessments. Ensuring data protection considerations are integrated business practices from the outset in line with privacy by design principles.
Develop and incorporate privacy controls, including reviewing supplier audits and due diligence assessments as part of the procurement process, to ensure third-party compliance with data protection standards.
Create and deliver privacy training and awareness programmes, including issuing group-wide communications, to foster a culture of proactive data protection compliance.
Support operational processes to embed excellent privacy and data governance practices, including data mapping and maintaining Records of Processing Activities (ROPAs).
Identify risks, requirements, and areas for improvement in data protection practices, contributing to the continuous enhancement of the data protection framework.
Analyse data protection incidents via root cause analysis to identify trends and training requirements, ensuring lessons learned are incorporated into future practices.
Monitor, log, and respond to data protection queries and rights requests, providing timely and accurate guidance to internal and external stakeholders.
Research and document future requirements driven by changes in legislation, ensuring the organisation remains ahead of regulatory developments.
Provide support and guidance to other members of the Data Protection team, enhancing the team's overall effectiveness.
What you'll need: Essential: Understanding of UK and EU Data Protection and Privacy Legislation: Proven experience in interpreting and applying data protection laws and regulations to ensure compliance.
Excellent verbal and written communication skills, with the ability to explain data topics clearly to individuals from diverse backgrounds to inform decision-making.
Previous experience in managing data subject rights requests, data breaches, and data protection assessments (DPIA/LIA/TIA ect).
Data Governance: Knowledge of data mapping and maintaining Records of Processing Activities (ROPAs).
Strong interpersonal skills with the ability and confidence to engage with colleagues at all management levels throughout the business.
High level of accuracy and attention to detail in reviewing policies, procedures, and data protection incidents.
Ability to promote a culture of proactive data protection compliance within the organisation.
Flexible approach to work, with the ability to see tasks through to completion and adapt to changing requirements.
Strong problem-solving skills with the ability to identify issues, analyse data, and develop effective solutions.
Understanding of the commercial implications of data protection practices and the ability to balance compliance with business needs.
Desirable: A recognised data protection qualification or demonstrable self-study on data protection topics.
Understanding of the insurance industry and relevant products and services.
Experience in developing and incorporating privacy controls, including supplier audits and due diligence assessments.
Ability to research and document future requirements driven by changes in legislation.
Our Benefits: Hybrid working – 2 days in the office and 3 days working from home
25 days annual leave, rising to 27 days over 2 years’ service and 30 days after 5 years’ service. Plus bank holidays!
Discretionary annual bonus
Pension scheme – 5% employee, 6% employer
Flexible working – we will always consider applications for those who require less than the advertised hours
Flexi-time
Healthcare Cash Plan – claim cashback on a variety of everyday healthcare costs
Electric vehicle – salary sacrifice scheme
100’s of exclusive retailer discounts
Professional wellbeing, health & fitness app - Wrkit
Enhanced parental leave, including time off for IVF appointments
Religious bank holidays – if you don’t celebrate Christmas and Easter, you can use these annual leave days on other occasions throughout the year.
Life Assurance - 4 times your salary
25% Car Insurance Discount
20% Travel Insurance Discount
Cycle to Work Scheme
Employee Referral Scheme
Community support day
#J-18808-Ljbffr