Enable job alerts via email!

Privacy Manager (GRC)

GCS

London

On-site

GBP 50,000 - 80,000

Full time

Yesterday

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An established industry player is on the lookout for a skilled Privacy Manager to join their Corporate GRC team. This pivotal role involves supporting the Data Protection Officer and advising on best practices for data privacy. You will maintain key governance materials, conduct privacy training, and manage data protection risks across operations. If you have a strong background in UK GDPR and a passion for ethical business practices, this is an exciting opportunity to make a significant impact in a forward-thinking organization.

Qualifications

Expertise in UK GDPR and international data protection laws.
Experience in developing privacy documentation and processes.

Responsibilities

Maintain privacy governance materials including policies and procedures.
Conduct audits and respond to client privacy questionnaires.
Provide support on international data transfers and contractual compliance.

Skills

UK GDPR expertise

Privacy documentation development

Contractual analysis and negotiation

Communication skills

Ethical decision-making

Join Our Mission to Champion Data Privacy

As part of our ongoing commitment to ethical business practices and data protection excellence, we are seeking a knowledgeable and principled Privacy Manager to join our Corporate GRC team.

This role is pivotal in supporting our Data Protection Officer (DPO) and advising the business on best practices related to data privacy. You'll act as a subject matter expert (SME), navigating complex compliance landscapes and championing privacy risk management across our operations.

Key Responsibilities:

Maintain and evolve key privacy governance materials including policies, procedures, DPIAs, ROPAs, and LIAs.
Design and deliver engaging privacy training sessions and risk assessments across the business.
Keep internal guidance, FAQs, and bid documentation up-to-date with legal developments and evolving industry standards.
Conduct due diligence, audits, and respond to client privacy questionnaires.
Provide specialist support on international data transfers including SCCs, TRAs, and IDTAs, working closely with clients and suppliers.
Review and negotiate data protection clauses in contracts, ensuring compliance and identifying commercial opportunities.
Manage requests involving live data usage, privacy exemptions, and provide internal advisory across departments including HR.
Evaluate and provide feedback on DPIAs, ROPAs, and LIAs submitted by internal teams, ensuring alignment with legal obligations.
Maintain external data protection registrations such as ICO and NHS DSPT.
Oversee complex data subject rights requests and advise on appropriate responses.
Support supplier onboarding through privacy risk assessments and due diligence reviews.
Proactively identify data protection risks and guide the business through mitigation strategies, escalating issues as appropriate.

What We're Looking For:

Demonstrable expertise in data privacy and protection laws, particularly UK GDPR and international frameworks
Strong experience in developing and maintaining privacy documentation and processes
Confident in advising on privacy matters across departments and senior stakeholders
Skilled in contractual analysis and negotiation in relation to data protection
Excellent written and verbal communication skills, with a collaborative mindset
High integrity and a strong ethical approach to business decisions

GCS is acting as an Employment Agency in relation to this vacancy.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.