Privacy Paralegal

Social network you want to login/join with:

Full Time / Monday to Friday / 37.50 hours per week

Remote Opportunity (HO in Northampton and Office Space in London)

Salary £doe per annum

Closing Date: 1/8/25

Purpose of Role:

To support the vision and mission of the Global Privacy Department with responsibilities as described below. Our vision is to deepen digital trust with clients, customers, prospects, suppliers, third parties and staff and to create a culture of data confidence across the company that enhances its global reputation. Our mission is to empower colleagues to deliver outstanding care, education and family solutions by protecting business continuity, managing data privacy risks and using technology solutions to achieve our objectives and goals.

Responsible For:

Administrative:

Participating in internal and external privacy compliance governance and project meetings, including preparing minutes, formal records and tracking follow up actions as appropriate

Managing internal tracking systems, databases and reporting requirements for the Privacy Department

Supporting the Privacy Department to develop best practice in privacy across the business

Overseeing department’s email box ensuring there is cover, responding to emails in timely manner, allocating appropriate support to respond and following up as applicable

Data Subject Requests:

Managing the Privacy Department’s data subject rights requests including:

processing rights requests on receipt to ensure compliance with relevant deadlines

liaising with internal stakeholders to enable response to rights request to be prepared on behalf of the business including the collation of data

preparing and sending responses to rights requests including application of relevant exemptions and escalation to Privacy Counsel for advice where appropriate in accordance with process

developing and updating OneTrust platform to ensure reflects flow chart for processing data subject requests

Maintaining current knowledge of applicable global privacy rules and guidance for data subject requests and implementing any legal changes into practice

Managing the Privacy Department’s privacy incident process including:

completing initial assessment of potential privacy implications

acting as a central point of contact to co-ordinate the investigation of privacy incidents

ensuring remediation and follow up actions are completed and documented

Data Protection Impact Assessments/Records of Processing Activities/Data Protection Agreements

Implementing the workflow through to completion for the documentation of processing activities, data protection impact assessments (DPIAs) and data protection agreements.

Policies and Procedures

Supporting the administration and implementation of all Privacy related policies, procedures, practices and frameworks as requested

Keeping all privacy-related processes and associated policies up-to-date and easily accessible to the business

Privacy Management Platform:

Learning and keeping up to date on department’s privacy management platform, which is currently OneTrust

Other Duties:

Dealing with ad hoc activities as assigned by members of the Privacy Department and any other duties commensurate with the role

Why Join Bright Horizons?

Flexible working and holiday entitlements

40% discounted childcare

Discounts on high street brands, cinema, holidays and more

Access to wellbeing resources

Paid volunteer day through our Bright Horizons Foundation for Children

We’ve been recognised as a Great Place to Work every year since 2006, and we’re proud to support our people through every step of their journey

Minimum 2 years’ experience working as a paralegal

Strong working legal knowledge of data subject rights under DPA, GDPR, CCPA

Experience managing with sole responsibility data subject access requests within an organization, including making legal determinations on processing requirements

Manage large workloads and execute plans from implementation to completion, including managing delivery by colleagues

Delivering high quality and efficient service, taking account of the diverse customer needs and requirements when looking at ways to improve service quality

Experience using OneTrust platform for management of privacy program or willingness to become proficient

Qualifications

International Association of Privacy Professionals (IAPP) Certified, CIPP/E & CIPM preferred or willing to become certified (training will be provided)

Open to change and comfortable suggesting ideas for improvements to the way things are done

We look forward to receiving your application!