Enable job alerts via email!
Data Protection Associate
loveholidays
London
On-site
GBP 30,000 - 50,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
Join a forward-thinking company on a mission to enhance data privacy and security. As a Data Protection Associate, you will play a pivotal role in shaping data protection strategies and managing Subject Access Requests (SARs). This position offers a unique opportunity to work closely with legal and engineering teams, gaining exposure to the inner workings of a high-growth technology firm. You'll develop your skills in a supportive environment while ensuring compliance with UK & EU GDPR regulations. If you're passionate about data privacy and eager to make a difference, this role is perfect for you.
Benefits
Qualifications
- Understanding of UK & EU GDPR and ICO regulations is essential.
- Experience in managing Subject Access Requests or similar responsibilities.
Responsibilities
- Manage end-to-end Subject Access Requests (SARs) ensuring compliance.
- Communicate with requestors and maintain records of SAR activities.
Skills
Education
Tools
Job description
Why loveholidays?
At loveholidays, we're on a mission to open the world to everyone. As a key member of our data protection team, you'll help ensure we maintain the highest standards of data privacy and security, building trust with our customers and stakeholders whilst delivering unmissable value for their next getaway.
About the team
As a key member of our Information Security team, you'll report directly to the Information Security Manager, who in turn reports to the Director of Business IT. Working at the intersection of technology, legal and business operations, you'll collaborate extensively with our legal counsel and engineering teams, as data protection and SAR processes touch every corner of our organisation.
This role offers an exceptional springboard into information security, providing a unique vantage point to understand how a high-growth technology company operates. You'll gain invaluable exposure to our technical architecture, business processes, and governance frameworks, while developing your expertise in a supportive environment. The role provides an excellent opportunity to build relationships across the business and develop a comprehensive understanding of how modern tech companies approach data protection and privacy.
The impact you’ll have:
As our Data Protection Associate, you will be instrumental in shaping our data protection strategies and processes. Reporting to the Information Security Manager, you'll take ownership of our Subject Access Request (SAR) processes, ensuring we maintain the highest standards of compliance with UK & EU GDPR and ICO regulations. Your role will be crucial in maintaining trust with our customers and stakeholders, while ensuring their data privacy rights are protected.
Your day-to-day:
- Manage end-to-end Subject Access Requests (SARs):
- Verify requester identities.
- Assess the scope of requests.
- Coordinate with internal teams to gather data.
- Ensure responses are provided within regulatory timeframes.
- Review and redact information:
- Redact sensitive information from collected data.
- Maintain transparency with requesters about redactions.
- Communication:
- Communicate with requestors throughout the SAR process.
- Interact with the Information Commissioner's Office (ICO) as needed.
- Record keeping and reporting:
- Maintain comprehensive records of SAR activities.
- Track compliance metrics.
- Training and guidance:
- Provide training to team members on SAR procedures.
- Ensure team members understand their responsibilities in the SAR process.
Your skillset:
We're looking for someone who brings a comprehensive understanding of UK & EU GDPR and ICO regulations, combined with hands-on experience in handling Subject Access Requests or similar data protection responsibilities. Your communication skills should be excellent, as you'll be interacting with stakeholders at all levels.
The role requires:
- Strong analytical and problem-solving capabilities
- Proven ability to manage multiple concurrent requests with meticulous attention to detail
- Experience in data privacy, legal compliance, or information security
Desirable
While not essential, we would value candidates who bring:
- A degree in Law, Information Security, or Business Administration
- Previous experience in the travel sector
- Knowledge of privacy-enhancing technologies and tools
Perks of joining us:
- Company pension contributions at 5%
- Individualised training budget for you to learn on the job and level yourself up
- Discounted holidays for you, your family and friends
- 25 days of holidays per annum (plus 8 public holidays) increases by 1 day for every second year of service, up to a maximum 30 days per annum
- Ability to buy and sell annual leave
- Cycle to work scheme, season ticket loan and eye care vouchers
At loveholidays, we focus on developing an inclusive culture and environment that encourages personal growth and collective success. Each individual offers unique perspectives and ideas that increase the diversity and effectiveness of our teams. And we value the insight and potential you could bring on our continued journey.
The interview journey:
- TA screening - 30 mins
- 1st stage with Hiring Manager - 45 mins
- Final stage with key stakeholder/s including a task to present, in office - 1 hour
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
