Data Protection Analyst, UK & EU

With a company culture rooted in collaboration, expertise and innovation, we aim to promote progress and inspire our clients, employees, investors and communities to achieve their greatest potential. Our work is the catalyst that helps others achieve their goals. In short, We Enable Possibility℠.

Key Responsibilities

• Coordinate and collate data subject access requests (DSARs)

• Review and action data protection incidents/breaches, ensuring appropriate privacy controls and mitigating actions are in place

• Assist with data protection impact assessments (DPIAs)

• Regularly review and update records of processing activities (RoPAs) to demonstrate accountability and compliance with applicable regulations

• Measure and track data protection key performance indicators (KPIs) to track the effectiveness of the organisation’s data protection and privacy program

• Assist with data protection/privacy issues that may arise within the business as necessary

• Assist with reviewing and maintaining Arch’s internal regulatory documents, such as policies, procedures, and legitimate interest assessments, and providing training to staff to foster and maintain high standards of data protection and privacy

• Collaborate with colleagues across Arch Group to support other group projects and privacy issues.

• Monitor changes to local privacy laws and regulations and make recommendations to the business as appropriate

• Assist with the review and drafting of agreements and notices, as appropriate, including privacy notices, inter-company transfer agreements, data processing agreements and vendor contracts (including Model Clauses)

Role Requirements & Skills

Skills / Competencies

• Excellent communication skills (both written and oral) for a wide range of audiences

• Organised and attention to detail in all tasks

• Excellent time management and the ability to prioritise own workload effectively and deliver to strict deadlines

• Ability to apply pragmatic solutions to complex problems

• Strong judgment and integrity

Qualifications • Degree educated

• Professional certifications such as CIPP/E are desirable (or willingness to obtain) but not required

Experience • One to two years in a data protection/privacy role

• Strong knowledge of EU and UK GDPR legislation and compliance requirements

• Experience in the Insurance industry is preferable but not required.

Do you like solving complex business problems, working with talented colleagues and have an innovative mindset? Arch may be a great fit for you. If this job isn’t the right fit but you’re interested in working for Arch, create a job alert! Simply create an account and opt in to receive emails when we have job openings that meet your criteria. Join our talent community to share your preferences directly with Arch’s Talent Acquisition team.

14100 ARCH UK ACCOUNT SET - TO BE USED FOR Q1 PAYROLL ONLY - Arch Europe Insurance Services Ltd