Experienced
Data Protection Analyst
who can hit the ground running and make an immediate impact within a fast-paced, compliance-driven environment.
This role is ideal for someone
with broad industry experience
in data protection and privacy compliance, who enjoys working across multiple business areas and delivering
project-focused
outcomes.
Key Responsibilities
* Support the Data Protection Officer in maintaining and developing the organisation's
privacy and data protection framework
.
* Lead and participate in
data protection projects
, ensuring compliance is built into new systems, processes, and initiatives from the outset.
* Conduct
Data Protection Impact Assessments (DPIAs)
and risk assessments for new technologies, vendors, and business processes.
* Maintain and update the
Record of Processing Activities (RoPA)
and other key compliance documentation.
* Provide
expert advice and practical guidance
on GDPR, ePrivacy, and related legislation.
* Support the
management of data breaches
, incidents, and subject rights requests (DSARs, erasure, rectification, etc.).
* Collaborate with stakeholders across Legal, IT, Security, HR, and Operations to integrate privacy into everyday business practices.
* Assist in
vendor due diligence
and review of Data Processing Agreements (DPAs).
* Contribute to
training, awareness, and communication initiatives
to promote a culture of data protection.
* Track and report on
key privacy metrics
and compliance performance indicators.
About You
* Minimum
3–5 years' experience
in a data protection, privacy, or compliance role.
* Demonstrated ability to
work autonomously and deliver results quickly
— comfortable taking ownership of projects and seeing them through.
* Broad understanding of
GDPR, Data Protection Act 2018
, and related privacy regulations across sectors.
* Strong background in
privacy-by-design
and experience supporting cross-functional, project-based initiatives.
* Excellent stakeholder management and communication skills — able to translate complex privacy concepts into clear, actionable guidance.
* Experience using
privacy management tools
(e.g., OneTrust, TrustArc, ServiceNow, or similar) is an advantage.
* Relevant certification preferred (e.g.,
CIPP/E, CIPM, or CDPO
).
* High attention to detail, strong organisational skills, and a proactive, solutions-driven mindset.