The Role

To assist the Group Data Protection Officer & Group Head of Compliance in complying with the requirements of the UK GDPR & DPA 2018 (et seq), and other applicable data protection laws that apply to Canopius Group entities worldwide.

Key Responsibilities

• Monitoring compliance with regulations and internal policies in relation to the protection of personal data
• Co-operating with regulatory authorities
• Maintaining / updating policies, procedures, and accountability frameworks, including Data Retention
• Maintaining the Register of Processing Activities
• Managing Consent processes and monitoring ongoing 'Consent' compliance
• Completing Legitimate Interest Assessments as required
• Updating third party and data processor contracts in conjunction with Legal
• Implementing data transfer agreements as required
• Reviewing and providing advice on Data Privacy Impact Assessments (DPIA)
• Monitoring improvements to organisational and technical measures
• Periodical production and delivery of training and awareness packs
• Fulfilling Data Subject Access Rights requests and handling incidents and complaints
• Maintaining Privacy Management Systems
• Maintaining expert knowledge through continuing professional education, training courses, seminars, and conferences

Skills and Experience:

• Working experience in a Data Protection role
• Experience of Privacy Program Management
• Prior experience of Data Subject Rights Requests and handling incidents and complaints
• Working knowledge of the UK GDPR / UK DPA 2018
• Knowledge of the OneTrust Privacy Management system preferred