Data Privacy Manager
London - Maple House

Job Reference: --008023

Location: London - Maple House

Closing Date: 07/10/2019

Department: Research/Analysis/Data

Division: Informa Connect

This role is responsible for owning and driving an agreed Data Privacy plan and operational support activities across Informa Intelligence, Informa Connect, Informa Tech and Informa Engage, to ensure that ‘cross-division operational’ support is provided to those businesses.  The role is also responsible for monitoring and communicating the status of data privacy compliance (across all areas including process, policy and technology) and for agreeing and driving risk mitigation plans, in accordance with levels of risk and investment agreed by the Cross-Divisional Operations Board and in line with Group policies and guidance provided by the Group DPO function.  This role will entail working closely with a wide number of internal teams (marketing, sales, product management, compliance, Group privacy) and all other relevant stakeholders to build an understanding in the divisions of global data protection issues and to ensure we are compliant with applicable regulations, primarily GDPR. 

KEY RESPONSIBILITIES

  • Maintain the Data Privacy risk register across the business units and identify mitigation plans (with the key risks to be cascaded to the central risk register where appropriate).
  • Present risks, mitigations and operational KPIs (e.g. number of data of data breaches) to the Data Privacy group (ie Cross-Divisional Operations Board and Data Privacy SteerCo)
  • Work with the Group DPO to develop the privacy function overall from the UK, including joint activities and initiatives between the Group team and business teams in the CDO.
  • Be the point of contact for any DP queries, from external or internal customers, around data whether this be with SARs, privacy reviews, DPIA’s, and recording of processing activities for the Divisions using OneTrust. 
  • Analyse and advise on all data protection queries from different members of the Business teams, providing information and issue recommendations to the Business teams
  • Oversee any SAR received within the divisions and ensure compliance with requirements and timings
  • Ensure appropriate processes and systems are in place to be able to respond to individuals when they exercise their rights (e.g. subject access request, object to processing, right to be forgotten etc) within the divisions, working with Group DPO as necessary
  • Foster a data protection culture within the organisation and help to implement essential elements of Data protections, such as the principles of data processing, data subjects’ rights, data protection by design and by default, records of processing activities, security of processing, and data breach handling
  • Run workshops and training sessions to share knowledge around data protection, etc
  • Review Privacy Impact Assessments and provide advice to the business teams on new projects and products
  • Work with the legal team in the review of any legal contracts and advise where necessary on data sharing arrangements and data processing agreements
  • Be an active member of data privacy management forum, privacy manager monthly meetings and work on project deliverables and initiatives as required and agreed between the CDO Board/Data Privacy SteerCo and DPO
  • Monitor the implementation and application of internal data protection policies and processes
  • Work collaboratively with Information Security to ensure appropriate Data Security is in place for any personal data held across the divisions
  • Keep abreast of Data Privacy Law changes around the world (e.g. South Africa, China, Singapore, Canada).
  • Work across functions collaboratively on privacy matters
  • Communication with key stakeholders, reporting on progress

SKILLS & EXPERIENCE REQUIRED

  • Educated to degree level
  • CIPP-E or similar qualification
  • 3+ years data protection and privacy experience
  • Experience maintaining a privacy compliance programme
  • Expertise in national and European data protection laws and practices and an in-depth understanding of the GDPR
  • Ability to handle information and business affairs with secrecy and confidentially as appropriate
  • Demonstrated leadership and project management experience
  • Ability to communicate effectively with the highest levels of management and decision-making within the organization
  • Familiarity with privacy and security risk assessment and best practices, privacy certifications/seals, and information security standards certifications
  • Adequate self-awareness and confidence to acknowledge knowledge gaps and seek to fill them from reliable sources
  • Knowledge of the business sector and of the employer’s organization
  • Team player with a strong focus on communication and service delivery
  • Pragmatic, business orientated mindset
  • Excellent written and verbal presentation skills
  • Detail oriented
  • Self-starter and able to work in stand-alone position

 

This position is now closed. We are no longer accepting applications for this position.

Back