Interim Data Protection Manager

Emerald Group
19 Feb 2019
16 Mar 2019
Contract Type
Full Time

About the Role

The Data Protection Manager is responsible for delivering the processes and accountabilities required within the Group Data Protection function to enable the business to operate within the GDPR, the Data Protection Act 2018 regulatory and the organisation’s related risk appetite statements.

About You


  • Expert knowledge of the GDPR, Data Protection Act 2018, ICO guidance and industry practices;
  • Ability to interpret relevant law, regulation and guidance in and for the business and insurance industry context;
  • Ability to assess and advise upon levels of risk exposure in relation to the processing of personal data;
  • Good understanding of the Life & Pensions and/or General Insurance sector/s;
  • General knowledge of data protection and information security procedures and processes;
  • Good knowledge of, and some experience of, complex change programmes;
  • Ability to work to deadlines including prioritising workload appropriately whilst delivering accurate and high-quality outputs;
  • Ability to work with ambiguity and to exercise sound judgment whilst managing others’ contrasting needs or objectives;
  • Ability to analyse, interpret and effectively communicate complex ideas;
  • Well-developed interpersonal, communication and analytical/analysis skills;
  • Senior stakeholder management experience with strong influencing and presentation skills at all levels of the organisation;
  • Report writing and editing experience including the ability to prepare and present professional reports to Executive level stakeholders;
  • Ability to work without close guidance/supervision.
  • The ability to take and provide effective feedback;
  • An aptitude for providing coaching and mentoring;
  • Attention to detail;
  • Excellent judgement;


  • Relevant data protection qualification
  • Previous experience of working in a legal, regulatory or compliance function

The Details

Contribute to the Group’s implementation and embedding of the GDPR and the Data Protection Act 2018 (DPA2018) by:

a) Reporting directly to and deputising for the GDPO;

b) Delivering expert guidance / advice to senior stakeholders on matters of Data Protection law and practice to enable them to pursue their business objectives in a manner compliant with DPA2018;

c) Input to the development of data protection strategy and the continuous improvement of operating models;

d) Input to the continuous development of the personal data aspects of enterprise-wide information strategy and information governance policies and procedures;

e) Designing and delivering relevant communications, awareness and training, enabling the business to mitigate risks and deal with incidents professionally / efficiently;

f) Ensuring data subjects are informed of their rights;

g) Monitoring risk-based systems of control and security;

h) Dealing promptly and professionally with requests for information and complaints;

i) Providing expert advice in all areas related to data protection and privacy;

j) Assisting, sometimes leading, on incident and breach investigations and responses;

k) Maintaining expertise in data protection, privacy and information security;

l) Maintaining knowledge of the company’s organisational structures, products and services;

m) Assisting with the data protection aspects of new product/service development;

n) Sharing stakeholder management in relation to data protection matters;

o) Sharing supervision of Data Protection Associates.

Similar jobs

Similar jobs