Data protection and Compliance Manager

  • Location
  • Contract Type
  • Posted
  • Industry
  • Salary
    £58000 - £63000 per annum
  • Expiry Date

We are working with a leading organisation within the automative industry, whose mission is to support and promote the interest of the sector, driving innovation, sustainability, and economic growth. They are looking for a skilled Data Protection and Compliance Manager to join their team.

The successful candidate will play a crucial role in managing and safeguarding personal data, ensuring compliance with GDPR and other relevant regulations. This role involves working closely with various departments to provide guidance and support on data protection/cyber security and compliance matters.

Key Responsibilities:

  • Maintain a documented record of all data flows across the Group, to record how data is received, stored, accessed, shared (as applicable) and ultimately destroyed; To advise and ensure that personal data is managed in accordance with all relevant data protection regulations and required procedures
  • Develop and document a programme to maintain customer (and member) compliance with the company’s vehicle data licences
  • Maintain, review and revise policies and procedures for the general operation of the Group Compliance Programme and its related activities to prevent illegal, unethical, or improper conduct
  • Collaborate with other departments and the wider Group, through a Data and Compliance Group to direct data and compliance issues to appropriate existing channels for investigation and resolution. Consult with the Head of Legal as needed to resolve difficult legal compliance issues
  • Respond to alleged violations of rules, regulations, policies, procedures, and standards of conduct by evaluating or recommending the initiation of investigative procedures. Develop and oversee a system for uniform handling of such violations
  • Act as an independent review and evaluation body to ensure that compliance issues/concerns within the organisation are being appropriately evaluated, investigated and resolved
  • Monitor, and as necessary, coordinate compliance activities (internal and external) of the Group departments to remain abreast of the status of all compliance activities and to identify trends
  • Identify potential areas of compliance vulnerability and data risks across the Group and tier 1 suppliers; develop/implement corrective action plans for resolution of problematic issues, and provide general guidance on how to avoid or deal with similar situations in the future
  • Provide reports (e.g. compliance reports and cyber security reports) on a regular basis, and as directed or requested, to keep Group Boards and senior management informed of the operation and progress of compliance efforts
  • Maintain an effective data/compliance communication programme for the organisation and third parties, including promoting (a) use of the Compliance phone line; (b) heightened awareness of standards of conduct, and (c) understanding of new and existing compliance issues and related policies and procedures
  • Work with all Group departments and third parties as appropriate to maintain an effective compliance training programme, including appropriate introductory training for new employees as well as ongoing training for all employees and managers
  • Monitor the performance of Group data, compliance and cyber security risk activities on a continuing basis, taking appropriate steps to improve security effectiveness
  • Liaise and negotiate with all relevant parties, both internal and external on all compliance aspects of Group activity
  • Work closely with (1) Data Intelligence on data security, integrity and data compliance generally, (2) IT on information security and ISO27001, onboarding third parties’ suppliers and other risk areas, (3) Group companies to monitor and audit outsourcing and third-party risks; (4) TMO on privacy compliance and data security

Qualifications / Skills / Attributes Required:

  • A positive and enthusiastic manner
  • A degree and professional qualification (such as IAPP) required
  • Proven experience in a data management and compliance role, with demonstrable management and professional experience;
  • Familiarity with financial, quality assurance, and human resource procedures and regulations
  • A reliable, highly organised individual, with an eye for detail
  • Confident and fluent in report writing and oral presentation
  • A self starter, but also able to follow instructions and work effectively without constant supervision
  • ICT competence and willingness to learn and use new technologies

For more information, please apply,

Please note our advertisements use PQE/salary levels purely as a guide. However we are happy to consider applications from all candidates who are able to demonstrate the skills necessary to fulfil the role.

Please note that your personal information will be treated in accordance with our Privacy Policy.

Apply now

Upload your CV/resume or any other relevant file. Max. file size: 15 MB.

By submitting your personal information, you consent to Taylor Root part of The SR Group storing and using the personal information you submit in accordance with our Privacy Policy. Taylor Root will use the personal information you provide to contact you with relevant content including our salary surveys and market reports, career advice, hiring advice, market insights and industry updates and events. Our Privacy Policy sets out full details of how Taylor Root may use your data. You may unsubscribe from these communications at any time, by clicking on the link at the bottom of any email.