Compliance Office (Data Protection)

Job Title: Compliance Office (Data Protection)
Contract Type: Contract
Location: Coventry
Salary: £16 - £16 per hour
Start Date: 2017-06-21
Reference: 18845
Contact Name: _Stephen Holmes
Contact Email:
Job Published: January 26, 2018 16:00

Job Description

Compliance Office (Data Protection)
6 months
£16.72 PAYE per hour

I am currently recruiting for some one with a compliance background for a 6 month project working within the HR Department of a large international manufacturer.
Reporting to the HR Operations Manager you will be tasked with insuring that the overall HR function complies with the requirements of the Data Protection Act 1998 and is ready for the introduction of the General Data Protection Regulation in May 2018.

The role is offered on a contract basis expected to last 6 months paying the equivalent to £32000 (£16.72 per hour PAYE).
This is an excellent opportunity for someone looking to become a subject matter expert on Data protection. You will not necessarily have come from an HR function but you will have experience in compliance.

Tasks and Responsibilities:
·Conduct a review of current practices with regard to the collection and processing of data within the HR function.
·Inform, advise and issue recommendations to the organisation regarding General Data Protection Regulation (GDPR) compliance within the HR function.
·Foster a data protection culture within HR and help to implement essential elements of the GDPR, such as the principles of data processing, data subjects' rights, data protection by design and by default, records of processing activities, security of processing, and notification and communication of data breaches.
·Advise the controller/processor regarding:
owhether or not to carry out a data protection impact assessment (DPIA);
owhat methodology to follow when carrying out a DPIA;
owhat safeguards (including technical and organisational measures) to apply to mitigate any risks to the rights and interests of the data subjects; and
owhether or not the DPIA has been correctly carried out and whether its conclusions (whether or not to go ahead with the processing and what safeguards to apply) are in compliance with the GDPR.
·Maintain internal PII Register so far as it relates to HR.
·Maintain the record of processing operations under the responsibility of the controller as one of the tools enabling compliance monitoring, informing and advising the controller or the processor.
·Document all decisions taken consistent with and contrary to advice.
·Offer advice once a data breach or other incident has occurred.

To be successful in this role it is expected that candidates will ideally have relevant demonstrable experience, including:
•Experience in national and European data protection laws and practices and an in-depth understanding of the GDPR desirable or within any other compliance field.
•Experience in data protection program management commensurate with the sensitivity, complexity and amount of data the organisation processes.
•Ability to handle information and business affairs with secrecy and confidentially as appropriate;
•Ability to communicate effectively with all levels within the organisation.
•Familiarity with privacy and security risk assessment and best practices, privacy certifications/seals, and information security standards certifications.
•Some understanding of and familiarity with information technology programming and infrastructure, and information security practices and audits.
•Adequate self-awareness and confidence to acknowledge knowledge gaps and seek to fill them from reliable sources.