Data Protection Officer

Please note - this role requires travel across our 3 main offices, Bristol, Birmingham and Coventry.

Overview

The DPO will monitor compliance and data practices internally to ensure the business and its functions comply with the applicable requirements under the GDPR. The DPO will be responsible for staff training, data protection impact assessments, and internal audits. The DPO will also serve as the primary contact for supervisory authorities and individuals whose data is processed by the organisation.

Summary

We are currently recruiting for a Data Protection Officer to join our Head Office team based in Clevedon with regular travel to our offices in Birmingham and Coventry.

This successful candidate should be able to demonstrate a thorough understanding of the regulatory environment in which the business operates; and promote a strong culture of data protection compliance.

You will drive the development, management and maintenance of the organisational data protection framework, establishing and implementing appropriate controls and mitigating data protection compliance risk for the organisation.

In addition, you will also support the Heads of Services in advising the various businesses within the organisation on data protection compliance management, including providing guidance and approval for emerging business initiatives, guidance with data protection compliance related policies for the business; and overall data protection related matters.

Responsibilities

Duties to include but are not limited to:

• Implementation and ongoing development of the Company's Information Sercuity Management System (ISMS)

• Review and update policies and procedures for customers, employees and data breach incident responses, ensuring alignment with the actual implementation of personal data processing activities

• Informing and advising staff who process personal data of their obligations under data protection legislation.

• Providing every day and ad-hoc UK Data Protection advice on a wide variety of queries and new initiatives from business departments and liaising with external legal advisers

• Providing relevant training to our employees to comply with existing and upcoming requirements under EU Data Protection laws

• Devise and update policies and procedures for customers, employees and data breach incident responses, ensuring alignment with the actual implementation of personal data processing activities

• Providing Data Protection advice and guidance to tender and contract agreement processes.

• Work with procurement, vendor management and the legal department to ensure that third-party suppliers' contracts and operating-level agreements fulfil defined privacy requirements.

• Monitoring compliance with data protection legislation and own data protection policies, including assignment of responsibilities, awareness raising and training, audits of processing activities and making recommendations for improvement.

• Conduct monitoring activities on collaborating partners, third-party service providers' and other data processors' levels of privacy compliance.

• Continuously monitor the status and effectiveness of privacy controls across our client's service offerings, ensuring that privacy-related key risk indicators are effectively monitored to prevent an unacceptable impact on business objectives and reputation.

Key Skills & Experience

• The ideal candidate will have one or more of the following certifications: Certified Information Privacy Professional (CIPP/E), Certified Information Privacy Management (CIPM), and/or Certified Information Privacy Technologist (CIPT)

• Detailed knowledge of the UK Data Protection Act 2018, EU e-Privacy Directive and the EU General Data Protection Regulation (GDPR) as well as EU model contracts and/or Binding Corporate Rules for international data transfers and other applicable legislation.

• Data Protection related experience as Data Protection Officer or within similar roles

• Experience of working within similar industry is desirable

• Experience of developing data protection compliance management framework and support systems

• Experience in data protection compliance risk management, including risk identification, evaluation, mitigation and management

• Ability to prioritise workload and balance multiple cross-functional duties and drive deadlines in a consistent manner

• Knowledge of IT security standards, IT profiling, interfaces and encryption standards

• Ability to navigate within a matrix organisational structure and execute for multiple stakeholders

• Strong analytical and data interpretation skills including the ability to review, interpret and present data in a concise and precise manner; holds team accountable for creating reporting and presentation materials that captivate and resonate with target audience

• Strong interpersonal and communication skills, both oral and written; with excellent attention to detail.

Glide started life as separate businesses delivering broadband, utilities and communications services to different markets across the UK. Now as one group we understand our customers and are specialists in delivering high quality, superfast and relentlessly reliable solutions for the student, residential and business sectors. We don't just offer connectivity - we build the cabling infrastructure that makes connectivity possible and offer utilities and communications platforms that improve experiences at home and in the workplace.