¡Activa las notificaciones laborales por email!
Data Privacy Manager, PepsiCo Europe
PepsiCo
Vitoria
Presencial
EUR 70.000 - 90.000
Jornada completa
Descripción de la vacante
A multinational food and beverage company is looking for a proactive Data Privacy Manager in Vitoria, Spain. This role involves leading privacy compliance across HR operations, ensuring alignment with GDPR and UK regulations. The ideal candidate should have a minimum of 8 years' experience in data privacy, with strong knowledge in HR processes and data subject rights. This position offers significant responsibilities in risk management and privacy training.
Formación
- Minimum 8 years of experience in data privacy, particularly in HR data.
- Strong working knowledge of EU GDPR and UK DPA 2018.
- Experience with DPIAs and managing DSARs.
Responsabilidades
- Conduct and advise on Data Protection Impact Assessments for HR.
- Lead annual HR privacy risk assessments and compliance monitoring.
- Develop and deliver privacy training modules.
Conocimientos
Educación
Herramientas
We are seeking a proactive and knowledgeable Data Privacy Manager to lead privacy compliance efforts across HR operations in the EU and UK. This role will serve as the primary privacy advisor to HR teams, ensuring that all employee data processing activities align with GDPR, UK DPA 2018, and emerging regulations such as the ePrivacy Regulation. The ideal candidate will report directly to the DPO, have a strong understanding of HR processes, data subject rights, and privacy-by-design principles, and will be comfortable working across legal, IT, and business functions to embed privacy into everyday operations.
Privacy Compliance & Risk Management:
- Conduct and advise on Data Protection Impact Assessments (DPIAs) for HR systems and processes;
- Maintain and update Records of Processing Activities (ROPAs) for HR-related data;
- Lead annual HR privacy risk assessments, identifying and mitigating regulatory and operational risks;
- Monitor compliance with data retention schedules, employee privacy notices, and internal controls;
- Collaborate with global Privacy colleagues to help drive simplification and embed standardised processes and procedures;
Data Subject Rights & HR Collaboration;
- Partner with HR teams to manage Data Subject Access Requests (DSARs), ensuring timely and lawful responses;
- Support HR in disciplinary, grievance, and absence cases, ensuring documentation is privacy-compliant and legally privileged where appropriate;
- Advise on access permissions in HR systems (e.g., Employee Central), ensuring data minimisation and legitimate access.
Training & Awareness:
- Develop and deliver privacy training modules;
- Promote privacy awareness through internal communications and HR leadership engagement.
Audit & Governance
- Lead internal and external HR privacy audits, including SOX-related controls where applicable;
- Serve as the Data Privacy Office representative in Privacy Councils, ensuring alignment with enterprise-wide privacy strategy.
- Minimum 8 years of experience in data privacy, with a focus on HR or employee data;
- Strong working knowledge of EU GDPR, UK DPA 2018, and HR regulatory frameworks;
- Experience conducting DPIAs, managing DSARs, and advising on HR system access controls;
- Familiarity with privacy tools such as OneTrust, Securiti, or similar platforms;
- CIPP/E certified with CIPM or CIPT highly desirable.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
