Job Summary:
The Manager GDPR and Data Protection is responsible for aligning and developing the IT management and review of all Processes and Systems associated with Personal Indentifiable Information and as defined by the Group DPO. Reporting to Global IT and indirectly to Group DPO, this position manages the Group Data Protection and Privacy Information necessary to ensure and demonstrate compliance. Responsibilities include contribution of IT responsibilities into the definition and management of data protection strategies, capturing data elements and data flows for all gategroup personal identifiable information (PII) and GDPR related activities, including activities related to managing risks, corrective actions and education activities.
Main Duties and Responsibilities:
- Partner with DPO to manage Data Protection and Privacy CoE and resources. Contributes to the evolution of strategies, manages resources and activities and ensure gategroup compliance with data protection and privacy.
- Responsible for investigation, analysis and documentation of personal information (PII) data stored and transmitted through out gategroup.
- Build key relationships across all gategroup functions to drive awareness and t GDPR compliance.
- With Legal undertake preparation and delivery of GDPR training.
- Manage systems and resource to catalogue data, building and maintaining the Global Inventory, Organisation Registry, Records of Processing Registry, and data relevant to gategroup’s compliance with data privacy standards.
- Works directly with key business managers/directors and IT stakeholders to capture all the business processes that deal with personal information.
- Produce schematic data maps for business to review and sign off and store these along with the records of processing.
- Maintain the Records of Processing, System Registry, Organisations and supporting tables to meet the requirements of the GDPR regulations in association with the Legal team using a GDPR platform.
- Work with Legal & IT to facilitate querying the GDPR platform.
- Prepare status and progress reports for the business and global compliance committees of gategroup.
Qualifications
Skills:
- Strong knowledge of data privacy laws and regulations
- Strong knowledge and experience managing techniques to ensure compliance with data protection and privacy
- Knowledge of MS Office applications
- In depth knowledge of Excel and data manipulation macros to prepare spreadsheets for data loading to the GDPR platform
- Strong communication skills and ability to work well with remote stakeholders using voice and video conferencing
- Time management
- High attention to detail and ability to document to agreed standards.
- Analytical
- Proactive foresight
- Flexibility/adaptability
Language / Communication Skills:
- Must be able to communicate in English with internal and external colleagues at all levels
- Must have experience of successful stakeholder interactions
Education:
- Bachelor’s degree in Computer Science, Business or related field
- MIS preferred
Work Experience:
- Minimum 5 years of experience shaping and supporting data protection and privacy activities
- Minimum 3 year of experience performing audits and using data protection and privacy systems
- Previous experience working directly with DPOs and company leaders
- Previous experience managing business or data analyst resources
- Previous experience as a business or data analyst
- Experience working with databases and documenting data elements and data flows