Job Title: European Data Protection Officer
About Us:
We are a leading long-term savings and retirement business, operating in the UK and Ireland. We offer a range of products across our market-leading brands, including Standard Life, SunLife, Phoenix Life and ReAssure. With over 7,400 colleagues, we're committed to helping people live a life of opportunity.
The Role:
As our European Data Protection Officer, you will play a critical role in ensuring the compliance of our businesses with data protection legislation. This includes advising and informing our teams on their obligations, monitoring compliance, and providing proactive data protection advice and guidance.
Main Responsibilities:
* Brief and advise the SLINTL and PLAE business on its obligations under data protection legislation.
* Act as the point of contact for employees and customers on data protection matters.
* Consult with European supervisory authorities on issues relating to data protection.
* Maintain a forward-thinking approach to data protection compliance through frequent regulator and industry updates.
* Support the Group Data Protection Officer in understanding and overseeing data protection risk across the SLINTL and PLAE business.
* Co-ordinate and report on data protection breaches, liaising with the regulator as appropriate.
Requirements:
* Previous experience working at a senior level within a regulated industry (e.g., financial services, healthcare).
* Experience in national and European data protection laws and practices, including an in-depth understanding of the EU GDPR, Irish DPA, and German Data Protection Acts.
* Knowledge of Information Security tools, capabilities, and controls, and experience in managing Information Security and Cyber risks.
* Ability to understand/interpret regulatory requirements to new or ongoing business situations.
Qualifications:
* Legal qualification, ISEB qualification in data protection, or alternatives like CIPP/E, CIPM. Desirable.
* Detailed knowledge and commercial application of the EU General Data Protection Regulation, specifically knowledge of the federal German Data Protection Act (BDSG) and Irish Data Protection Act (DPA). Essential.