Create Alert
Apply now »
Vacancy ID:  47361

Role overview:

Senior Data Governance, Privacy & Operations Manager
Waterloo - Hybrid Working
Full Time
Permanent 
Grade 5
 
At Currys we’re united by one passion: to help everyone enjoy amazing technology. As the UK’s best-known retailer of tech, we’re proud of the service our customers receive – and it’s all down to our team of 25,000 caring and committed colleagues. Working as one team, we learn and grow together, celebrating the big and small moments that make every day amazing.

The Senior Data Governance, Privacy & Operations Manager will be responsible for leading our overall data governance agenda, including leading the delivery of the data governance requirements through facilitating cross-function collaboration, promoting data as an asset and driving policy. This key role will also lead the team providing end to end data privacy assurance and execution of on-going data operations. The role will require close partnerships with the Data Protection Office and Information Security teams.

 

Role overview:

General:

  • Lead our Data Governance inc. Accountability Framework and all initiatives involved in enhancing our position and reducing our risk
  • Line Management and support of Data Governance, Privacy Assurance and Data Operations
  • KPI Reporting across the team
  • Policies ownership and review
  • Oversee policy management, configuration and operation of data governance and scanning tools including One Trust, MS Purview and Ground Labs

Data Privacy Assurance:

  • Partner with cross functional teams, using privacy subject matter expertise to embed data protection compliance and privacy risk management 
  • Conduct comprehensive data protection risk, legitimate interest and transfer impact assessments
  • Advise on data protection clauses as part of contractual negotiations with 3rd parties, including advising in-house counsel where appropriate.
  • Reviewing assurance documentation, including pre-screens, LIAs and DPIAs

Data Governance:

  • Support with the maintenance of the company-wide Record of Processing Activities documenting the basis on which data is being shared / used by the business to support contractual and regulatory obligations. Support from Data Owners and Stewards
  • Provide SME support to the Business in agreeing remediation actions to address key risks and issues
  • Together with L&D, oversee and drive completion of training across the UK&I business and 3rd parties
  • Help embed the culture of responsible use of data as an asset across the company
  • Oversee, monitor and drive the adoption and embedding of data governance requirements 
  • Oversee data lifecycle management across systems and processes
  • Monitor the accountability for data governance in the UK&I business to ensure there is evidence of a clear line of accountability to the Board

Data Operations:

  • Management of Microsoft Purview and Ground Labs for data access, classification, compliance, retention and loss prevention purposes
  • Produce and maintain a companywide Business Data Glossary and Data Lineage
  • Management of the One Trust software and relationship with One Trust
  • Support the development of data use in conjunction with Customer Insight, Marketing and IT teams 
  • Data incident liaison, supporting investigation, trends monitoring and development of mitigation action plans with internal stakeholders
  • Support the completion of Data Subject Rights Requests within the required timeframes

 

Experience:

  • Extensive experience of privacy regulations - EU GDPR, PECR, DPA 2018
  • 5+ years of proven experience analysing, assessing and advising on risk and impact and investigating incidents from a UK and European privacy and data protection perspective
  • 5+ years’ experience determining options for handling of personal data, often in the absence of previous regulatory interpretation or operational examples, being comfortable with ambiguity
  • 5+ years’ experience advising on multiple complex projects in parallel, including prioritizing and working alongside cross-functional teams taking into accountdiffering commercial requirements
  • Commercially aware specialist, capable of applying regulatory principles and frameworks to complex commercial and operational arrangements
  • Ability to independently, quickly and accurately assess legal, practical and business risks in a fast-paced environment and make sound judgments
  • Experience working with third-party stakeholders (including business partners, suppliers, service providers and IT product vendors)
  • Experience with Privacy tools, preferably One Trust

 

Why join us:

 

Join our team and we'll be with you every step of the way, helping you develop the career you want with new opportunities, on-going training and skills for life.

 

Not only can you shape your own future, but you can help take charge of ours too. As the biggest recycler and repairer of tech in the UK, we’re in a position to make a real impact on people and the planet. 

 

Every voice has a space at our table and we're committed to making inclusion and diversity part of everything we do, including how we strengthen our workforce. We want to make sure you have a fair opportunity to show us your talents during our application process, so if you need any additional assistance with your application please email careers@currys.co.uk and we'll do our best to help.

 

Apply now »