48 Gdpr jobs in the United Kingdom
Senior Data Protection Officer (GDPR Compliance)
Posted 12 days ago
Job Viewed
Job Description
Your role will involve developing, implementing, and maintaining comprehensive data protection policies and procedures, conducting data protection impact assessments (DPIAs), managing data subject access requests (DSARs), and advising departments on privacy-related matters. You will act as the primary point of contact for supervisory authorities and will play a key role in training staff on data protection best practices. This position requires a deep understanding of legal frameworks, robust analytical skills, and the ability to communicate complex legal concepts clearly and concisely to both legal and non-legal audiences.
Key Responsibilities:
- Develop, implement, and maintain the firm's data protection strategy and framework.
- Ensure compliance with GDPR, Data Protection Act 2018, and other applicable privacy laws and regulations.
- Conduct regular audits and assessments of data processing activities and systems.
- Prepare and review Data Protection Impact Assessments (DPIAs) for new projects and systems.
- Manage and respond to Data Subject Access Requests (DSARs) and other individual rights requests.
- Act as the firm's Data Protection Officer (DPO) and primary contact for regulatory authorities.
- Provide expert advice and guidance to all departments on data protection compliance and best practices.
- Develop and deliver comprehensive data protection training programs for staff at all levels.
- Investigate and manage data breaches, including reporting to supervisory authorities as required.
- Stay abreast of evolving data protection laws, regulations, and guidance.
- Advise on data processing agreements with third-party vendors.
- Promote a strong data privacy culture throughout the organization.
- Law degree or equivalent professional qualification.
- Proven experience as a Data Protection Officer or in a senior data privacy role, ideally within a legal or professional services environment.
- In-depth knowledge of GDPR, Data Protection Act 2018, and international data protection principles.
- Professional certification such as CIPP/E, CIPM, or similar is highly desirable.
- Experience in conducting DPIAs and managing DSARs.
- Excellent understanding of data processing operations, IT security, and risk management.
- Strong analytical, problem-solving, and critical thinking skills.
- Exceptional written and verbal communication skills, with the ability to explain complex legal concepts clearly.
- High level of integrity and discretion.
- Ability to work independently and manage multiple priorities effectively in a remote setting.
Audit Associate ISO standard and GDPR
Posted 3 days ago
Job Viewed
Job Description
Job Summary
The implementation and maintenance of the clients compliance and internal audit functions. This role will be accountable for ensuring adherence to internal processes, external standards, and applicable regulations (including ISO standards and data protection laws). The role is focused on operational execution and administrative tasks to ensure the client is compliant and can successfully carry out audit and compliance requirements.
Key responsibilities :
- Regulatory monitoring: Track changes in laws/regulations that impact the business (e.g., GDPR & ISO standards).
- Maintain the company's Quality Management System (QMS) to ensure compliance with ISO 9001 and ISO 27001 standards.
- Policy management: Help draft, update, and communicate internal compliance policies.
- Training & awareness: Conduct staff training on compliance topics (e.g., data protection, anti-bribery).
- Compliance checks: Monitor business processes to ensure alignment with internal and external standards.
- Reporting breaches: Escalate and document incidents of non-compliance.
- Liaison with regulators: Support responses to external audits, inspections, or regulatory queries.
- Maintain and update the Integrated Management System (IMS) Library, ensuring all documents (policies, procedures, forms, etc.) are current, accessible, and properly version controlled.
- Core outcome: Prevent regulatory breaches, fines, and reputational risks.
Internal audits: Customer, operational, and IT controls against policies and risk frameworks.
- Risk assessment: Identify control weaknesses and areas for improvement.
- Audit planning: Assist in scoping and scheduling internal audits.
- Evidence gathering: Review documents, interview staff, and analyse data to verify processes.
- Audit reports: Draft findings, highlight deficiencies, and recommend corrective actions.
- Follow-up audits: Track progress of remediation actions and ensure fixes are implemented. Accountable
- Administrative tasks related to compliance documentation, including filing, formatting and distribution updated documents.
- Keeping Risk register up to date
- Change management process.
Experience and Qualifications
- Quality management experience
- Knowledge of Information security and legislative requirements.
- ISO9001, ISO27001 implementation knowledge
- Experience in auditing ISO9001 and ISO27001 systems
- Excellent communication skills (Written & oral)
- Excellent stakeholder management skills.
Compliance Manager - Competition Law / GDPR / Regulatory
Posted today
Job Viewed
Job Description
We’re hiring: Compliance Manager - Competition Law / GDPR / Ofcom
Greater Reading - 3 days/week in office and 2 days remote
Permanent
Are you passionate about driving a culture of integrity and ensuring organisations meet the highest standards of compliance? We’re looking for a Compliance Manager to play a pivotal role in strengthening our governance framework and supporting the continued evolution of our compliance function.
About the role:
As Compliance Manager, you’ll be the go-to expert for compliance frameworks, policies, and regulatory requirements. You’ll monitor and interpret regulations (including telecom regulations), manage audits, and collaborate across teams to embed “compliance by design” into everyday business practices.
What you’ll be doing:
Build and maintain compliance frameworks, policies, and toolkits
Lead on regulatory compliance (GDPR, Ofcom, Competition law, etc.)
Manage internal audits, reporting, and risk assessments
Act as a central point of contact for stakeholders, regulators, and auditors
Drive cultural change, embedding compliance across all levels of the organisation
Deliver training, guidance, and clear communications on regulatory requirements
What we’re looking for:
Proven experience in Compliance Management (Competition Law, GDPR, ISO)
Strong knowledge of regulatory compliance frameworks
Excellent communication and stakeholder engagement skills
A proactive, solutions-focused approach with strong organisational skills
Why join us?
This is a fantastic opportunity to make a real impact, shaping how compliance is delivered across the business. You’ll be working in a collaborative, fast-paced environment with plenty of variety and challenge, alongside a team that values innovation, integrity, and continuous improvement.
Ready to take the next step in your compliance career? Apply now and help us build a culture where compliance and ethics thrive.
Data Protection Supervisor
Posted 6 days ago
Job Viewed
Job Description
Sue Ross Legal are working on behalf of our client, a highly respected Law Firm who are seeking an experienced legal professional to step into a supervisory role with a dynamic and growing team focused on data breach and privacy litigation . This position offers the chance to combine hands-on legal work with leadership, mentoring, and the development of junior team members.
As a Supervisor, you’ll oversee fast-track and multi-track claims relating to data protection and privacy breaches. Your responsibilities will span client care, legal case progression, and team development. You’ll be instrumental in securing fair compensation for clients affected by data misuse while nurturing the next generation of legal professionals.
This is a key position for someone who thrives in both a strategic and client-facing environment—where leadership, legal insight, and people development come together.
Key Responsibilities for the Data Protection Supervisor role:
- Oversee the conduct of litigated fast-track and multi-track claims li>Assess case prospects, prepare legal documents, and gather evidence
- Maintain ongoing communication with clients, ensuring their needs are met
- Instruct Counsel and collaborate with barristers from leading chambers
- Mentor and supervise junior staff, providing day-to-day guidance and support
- Ensure high standards of legal work and case handling across the team
Typical duties Include:
- Draft pre-action correspondence and manage court documents
- Take witness statements and prepare evidence for liability and damages
- Instruct medical experts and arrange necessary treatment
- Attend conferences, case management hearings, applications, and trials
- Handle settlement offers, litigation strategy, and dispute resolution
- Deliver feedback and training to junior team members
Candidate Requirements for the Data Protection Supervisor role:
- Strong background in litigation, preferably in data protection or privacy law
- Excellent telephone and written communication skills
- High-level organisational, analytical, and research abilities
- Sound knowledge of data protection compliance, cybersecurity, and the CPR
- Understanding of solicitor/client retainers and litigation processes
- Proven leadership and mentoring experience
- Confident decision-making and problem-solving skills
- Ability to foster a supportive, collaborative team environment
What’s on Offer for the Data Protection Supervisor role:
- < i>Opportunity to lead meaningful, high-impact legal cases
- Influence and shape a growing legal team
- Professional development and leadership progression
- Work in a supportive, mission-driven legal environment
This is an outstanding organisation to work with and the successful candidate will enjoy being part of a dynamic and forward thinking team culture.
Unfortunately due to the number of applications we receive, we are unable to provide individual feedback to all applicants. Please assume that if you do not hear from us within 72 hours that your application has been unsuccessful on this occasion.
May we take this opportunity to thank you for expressing an interest in one of our roles and wish you the very best in your search for employment.
Data Protection Supervisor
Posted 6 days ago
Job Viewed
Job Description
Sue Ross Legal are working on behalf of our client, a highly respected Law Firm who are seeking an experienced legal professional to step into a supervisory role with a dynamic and growing team focused on data breach and privacy litigation . This position offers the chance to combine hands-on legal work with leadership, mentoring, and the development of junior team members.
As a Supervisor, you’ll oversee fast-track and multi-track claims relating to data protection and privacy breaches. Your responsibilities will span client care, legal case progression, and team development. You’ll be instrumental in securing fair compensation for clients affected by data misuse while nurturing the next generation of legal professionals.
This is a key position for someone who thrives in both a strategic and client-facing environment—where leadership, legal insight, and people development come together.
Key Responsibilities for the Data Protection Supervisor role:
- Oversee the conduct of litigated fast-track and multi-track claims li>Assess case prospects, prepare legal documents, and gather evidence
- Maintain ongoing communication with clients, ensuring their needs are met
- Instruct Counsel and collaborate with barristers from leading chambers
- Mentor and supervise junior staff, providing day-to-day guidance and support
- Ensure high standards of legal work and case handling across the team
Typical duties Include:
- Draft pre-action correspondence and manage court documents
- Take witness statements and prepare evidence for liability and damages
- Instruct medical experts and arrange necessary treatment
- Attend conferences, case management hearings, applications, and trials
- Handle settlement offers, litigation strategy, and dispute resolution
- Deliver feedback and training to junior team members
Candidate Requirements for the Data Protection Supervisor role:
- Strong background in litigation, preferably in data protection or privacy law
- Excellent telephone and written communication skills
- High-level organisational, analytical, and research abilities
- Sound knowledge of data protection compliance, cybersecurity, and the CPR
- Understanding of solicitor/client retainers and litigation processes
- Proven leadership and mentoring experience
- Confident decision-making and problem-solving skills
- Ability to foster a supportive, collaborative team environment
What’s on Offer for the Data Protection Supervisor role:
- < i>Opportunity to lead meaningful, high-impact legal cases
- Influence and shape a growing legal team
- Professional development and leadership progression
- Work in a supportive, mission-driven legal environment
This is an outstanding organisation to work with and the successful candidate will enjoy being part of a dynamic and forward thinking team culture.
Unfortunately due to the number of applications we receive, we are unable to provide individual feedback to all applicants. Please assume that if you do not hear from us within 72 hours that your application has been unsuccessful on this occasion.
May we take this opportunity to thank you for expressing an interest in one of our roles and wish you the very best in your search for employment.
Data Protection Advisor
Posted 8 days ago
Job Viewed
Job Description
+ Support privacy compliance efforts for customer and employee data
+ Conduct Data Protection Impact Assessments (DPIAs) and evaluate AI-related initiatives
+ Assist in managing data subject rights requests and privacy incidents
+ Deliver training and awareness programs across the organization
+ Perform internal privacy audits and contribute to continuous improvement
+ Help implement Ford's global privacy strategy and privacy-by-design principles
+ Partner with business units to address privacy and data access needs
+ Monitor regulatory developments and support compliance with evolving laws
**The minimum requirements we seek:**
+ Proven experience advising on GDPR, ePrivacy, and the EU AI Act
+ Strong knowledge of privacy documentation (e.g., DPIAs, privacy notices, contracts)
+ Experience with data architecture, data flows, and cloud-based services
+ Excellent communication skills-able to simplify complex topics for diverse audiences
+ Strong leadership and interpersonal skills to influence and mentor across teams
+ Ability to quickly grasp and apply global regulatory frameworks
+ Experience in large, matrixed, multinational organizations
**Our preferred requirements:**
+ Bachelor's degree in Law (or equivalent)
+ 10+ years of progressive experience in data protection roles
+ Confident in leading strategic privacy discussions with a risk-based mindset
+ Creative, future-focused thinker who embraces innovation and change
+ Skilled communicator across multiple channels and audiences
+ Strong organizational and time management skills
+ Experience handling DSARs, incidents, and breaches
+ Strongly Preferred: IAPP certifications (CIPM, CIPP/E, CIPT)
+ Strongly Preferred: Experience advising on global privacy compliance
+ Desirable: Familiarity with OneTrust or similar privacy management tools
**Additional Information:**
_The Company is committed to diversity and equality of opportunity for all and is opposed to any form of less favourable treatment or harassment on the grounds of race, religion or belief, sex, marriage and civil partnership, pregnancy and maternity, age, sexual orientation, gender reassignment or disability_
_This position is based in Dunton, and it is expected the successful candidate will be able to attend the Dunton office for typically 4 days a week and remain flexible on the days they are required to attend the office according to business requirements._
_As part of our pre-employment checks process, successful candidates will be required to undergo a criminal record check. This will be conducted in line with the Rehabilitation of Offenders Act 1974 and applied only to unspent convictions._
#LI-SN2 #FordCredit
**Requisition ID** : 47576
Data Protection Advisor
Posted 8 days ago
Job Viewed
Job Description
+ Support privacy compliance efforts for customer and employee data
+ Conduct Data Protection Impact Assessments (DPIAs) and evaluate AI-related initiatives
+ Assist in managing data subject rights requests and privacy incidents
+ Deliver training and awareness programs across the organization
+ Perform internal privacy audits and contribute to continuous improvement
+ Help implement Ford's global privacy strategy and privacy-by-design principles
+ Partner with business units to address privacy and data access needs
+ Monitor regulatory developments and support compliance with evolving laws
**The minimum requirements we seek:**
+ Proven experience advising on GDPR, ePrivacy, and the EU AI Act
+ Strong knowledge of privacy documentation (e.g., DPIAs, privacy notices, contracts)
+ Experience with data architecture, data flows, and cloud-based services
+ Excellent communication skills-able to simplify complex topics for diverse audiences
+ Strong leadership and interpersonal skills to influence and mentor across teams
+ Ability to quickly grasp and apply global regulatory frameworks
+ Experience in large, matrixed, multinational organizations
**Our preferred requirements:**
+ Bachelor's degree in Law (or equivalent)
+ 10+ years of progressive experience in data protection roles
+ Confident in leading strategic privacy discussions with a risk-based mindset
+ Creative, future-focused thinker who embraces innovation and change
+ Skilled communicator across multiple channels and audiences
+ Strong organizational and time management skills
+ Experience handling DSARs, incidents, and breaches
+ Strongly Preferred: IAPP certifications (CIPM, CIPP/E, CIPT)
+ Strongly Preferred: Experience advising on global privacy compliance
+ Desirable: Familiarity with OneTrust or similar privacy management tools
**Additional Information:**
_The Company is committed to diversity and equality of opportunity for all and is opposed to any form of less favourable treatment or harassment on the grounds of race, religion or belief, sex, marriage and civil partnership, pregnancy and maternity, age, sexual orientation, gender reassignment or disability_
_This position is based in Dunton, and it is expected the successful candidate will be able to attend the Dunton office for typically 4 days a week and remain flexible on the days they are required to attend the office according to business requirements._
_As part of our pre-employment checks process, successful candidates will be required to undergo a criminal record check. This will be conducted in line with the Rehabilitation of Offenders Act 1974 and applied only to unspent convictions._
#LI-SN2 #FordCredit
**Requisition ID** : 47575
Be The First To Know
About the latest Gdpr Jobs in United Kingdom !
Data Protection Officer
Posted 1 day ago
Job Viewed
Job Description
About the Company: Global Education Provider
About the Role: A global education provider is seeking Data Protection Officer, and Senior Legal Counsel Commercial to join its legal team. This role is ideal for a qualified lawyer with strong commercial and corporate experience and data protection experience with GDPR and subject access request expertise , who thrives in a dynamic, fast-paced environment. The role is primarily remote, with occasional in-office requirements in London. Candidates do need to be close and commutable to London in the event office needs require their presence.
Responsibilities:
- Commercial & Corporate Legal Work:
- Draft, review, and negotiate a variety of commercial contracts , including service agreements, technology contracts, and partnership agreements, IP and data protection, and handle all aspects of data protection for the group companies.
Qualifications: England & Wales-qualified solicitor with 4+ years PQE, ideally from private practice (top-tier firm experience preferred) or from in-house with previous private practice experience.
Required Skills:
- Proven experience in commercial and corporate law in a private practice setting , including contract negotiation and regulatory compliance.
- Ability to work independently in a remote setting while collaborating effectively with internal teams.
- Excellent communication skills, with the ability to simplify complex legal issues for non-legal stakeholders.
REF# LI1332
Data Protection Officer
Posted 1 day ago
Job Viewed
Job Description
About the Company: Global Education Provider
About the Role: A global education provider is seeking Data Protection Officer, and Senior Legal Counsel Commercial to join its legal team. This role is ideal for a qualified lawyer with strong commercial and corporate experience and data protection experience with GDPR and subject access request expertise , who thrives in a dynamic, fast-paced environment. The role is primarily remote, with occasional in-office requirements in London. Candidates do need to be close and commutable to London in the event office needs require their presence.
Responsibilities:
- Commercial & Corporate Legal Work:
- Draft, review, and negotiate a variety of commercial contracts , including service agreements, technology contracts, and partnership agreements, IP and data protection, and handle all aspects of data protection for the group companies.
Qualifications: England & Wales-qualified solicitor with 4+ years PQE, ideally from private practice (top-tier firm experience preferred) or from in-house with previous private practice experience.
Required Skills:
- Proven experience in commercial and corporate law in a private practice setting , including contract negotiation and regulatory compliance.
- Ability to work independently in a remote setting while collaborating effectively with internal teams.
- Excellent communication skills, with the ability to simplify complex legal issues for non-legal stakeholders.
REF# LI1332
Data Protection Officer
Posted 1 day ago
Job Viewed
Job Description
Job Title: Data Protection Officer
(Hybrid/Remote)
Salary: £36,500
Start Date: ASAP
Make Your Mark in Data Protection
Are you passionate about safeguarding sensitive information and making a meaningful difference in the education sector? We’re looking for a Data Protection Consultant who can cut through the complexity of GDPR, build trusted relationships with schools and academies, and deliver practical solutions that matter.
This is your opportunity to join a respected provider of essential services – including HR, Health & Safety, Payroll, and Information Security – where your work will directly help schools and communities stay safe and compliant.
What You’ll Be Doing
In this varied consultancy role, you’ll:
- Advise schools and academies as their trusted expert on all areas of data protection.
- Carry out audits and risk assessments, identifying gaps and designing effective solutions.
- Take the lead during data breaches, offering calm and expert guidance.
- Draft and update clear, practical policies and procedures.
- Deliver engaging training sessions to help staff understand GDPR in practice.
- Produce professional reports with insight and actionable recommendations.
What We’re Looking For
We’re seeking someone with:
- Solid experience in data protection, GDPR compliance, or consultancy (education sector experience is desirable but not essential).
- Excellent communication skills, with the ability to explain complex issues in simple terms.
- Strong organisational ability and confidence in managing multiple projects.
- Good IT skills, including Microsoft Office/365, with the adaptability to learn new systems.
- A proactive, solutions-focused approach and a commitment to continuous learning.
Why Apply?
- Make an impact in schools and communities.
- Enjoy variety, autonomy, and client interaction in your day-to-day work.
- Benefit from a flexible remote/hybrid setup.
- Join a supportive, mission-driven team where your expertise is valued.
If you’re a confident data protection professional who wants a role with both purpose and influence, we’d love to hear from you.