OverviewWorking with inspiring and experienced colleagues, you'll find that the atmosphere in our city-centre office inKrakówis informal and engaging. With drive and ingenuity, our teams deliver vital services to PepsiCo employees around the world. With an active, get-things-done culture, this is a place where your dynamism and agility will make a difference.We are seeking a proactive and knowledgeable Data Privacy Manager to lead privacy compliance efforts across HR operations in the EU and UK. This role will serve as the primary privacy advisor to HR teams, ensuring that all employee data processing activities align with GDPR, UK DPA 2018, and emerging regulations such as the ePrivacy Regulation.The ideal candidate will report directly to the DPO have a strong understanding of HR processes, data subject rights, and privacy-by-design principles, and will be comfortable working across legal, IT, and business functions to embed privacy into everyday operations.ResponsibilitiesPrivacy Compliance & Risk Management:Conduct and advise on Data Protection Impact Assessments (DPIAs) for HR systems and processes;Maintain and update Records of Processing Activities (ROPAs) for HR-related data;Lead annual HR privacy risk assessments, identifying and mitigating regulatory and operational risks;Monitor compliance with data retention schedules, employee privacy notices, and internal controls;Collaborate with global Privacy colleagues to help drive simplification and embed standardised processes and procedures;Data Subject Rights & HR Collaboration;Partner with HR teams to manage Data Subject Access Requests (DSARs), ensuring timely and lawful responses;Support HR in disciplinary, grievance, and absence cases, ensuring documentation is privacy-compliant and legally privileged where appropriate;Advise on access permissions in HR systems (e.g., Employee Central), ensuring data minimisation and legitimate access.Training & Awareness:Develop and deliver privacy training modules;Promote privacy awareness through internal communications and HR leadership engagement.Audit & GovernanceLead internal and external HR privacy audits, including SOX-related controls where applicable;Serve as the Data Privacy Office representative in Privacy Councils, ensuring alignment with enterprise-wide privacy strategy.QualificationsMinimum 8 years of experience in data privacy, with a focus on HR or employee data;Strong working knowledge of EU GDPR, UK DPA 2018, and HR regulatory frameworks;Experience conducting DPIAs, managing DSARs, and advising on HR system access controls;Familiarity with privacy tools such as OneTrust, Securiti, or similar platforms;CIPP/E certified with CIPM or CIPT highly desirable.The 'Internal Reporting Procedure' for making reports of violations of the law and taking follow-up action in terms of the Law on Whistleblower Protection of June 14, 2024 is available at under the Contact/Career tab.