Data Protection Manager

This Data Protection Manager, Leeds, Hybrid role covers the following:

Job PurposeThe Data Protection Manager will play a crucial role in ensuring compliance with data protection laws and regulations.

The role holder will be responsible for overseeing data protection activities, implementing data protection policies, and serving as the primary point of contact for data protection matters. This role will report to the Data Protection Officer within the Compliance function.Core Responsibilities:

• Data Protection Strategy: Contribute to the development and support implementation of the data protection strategy that aligns with the privacy goals and ensures compliance with data protection laws and regulations.
• Policy Development: Review and maintain data protection policies and procedures, ensuring they are up-to-date and comply with GDPR.
• Data Privacy Impact Assessments (DPIAs): Conduct privacy impact assessments for new projects, systems, or processes that involve the processing of personal data and recommend necessary measures to mitigate risks.
• Data Protection Training: Organise and provide data protection training and awareness programs for employees to ensure they understand their responsibilities in protecting personal data.
• Data Subject Rights (DSARs): Manage and facilitate the process for handling data subject requests, including access, rectification, erasure, and data portability, in accordance with data protection laws.
• Incident Response: Point of contact for data breaches and privacy incidents, ensuring swift and appropriate actions are taken in the event of a breach.
• Data Mapping and Inventory: Maintain a comprehensive inventory of personal data processed by the organisation and ensure that data flows and processing activities are documented.
• Vendor and Third-Party Risk Management: Assess and monitor the data protection practices of third-party vendors and partners to ensure they meet the organisation's standards and compliance requirements.
• Compliance Monitoring: Regularly review and audit data protection practices within the organisation to identify compliance gaps and areas for improvement.
• Reporting: Prepare and submit regular reports to senior management and relevant authorities on the organisation's data protection activities, including compliance status and incident reports.
• Act as a trusted partner with key stakeholders across the Bank to identify, assess, update and mitigate risks and determine appropriate controls and resources required to effectively control them.
• Deliver and ensure the completion of suitable learning and development programmes for all employees to promote a culture of good conduct and compliance.
• Work collaboratively within a high performing team to deliver the function's strategic risk and compliance framework.