Privacy Analyst

First Point Group is recruiting for a Privacy Analyst with CIPP / CIPM / CIPT accreditations and previous experience of supporting global HR privacy programs. This opportunity offers an immediate start and is predominantly remote working with occasional ad-hoc travel to the office in Berkshire.

***** Please note - sponsorship cannot be provided so candidates must live in UK with valid rights to work.

The objective is to ensure compliance with data protection regulations like GDPR and offer best-practice guidance to our People (GFPL) and Talent Acquisition, HR teams. We are seeking a highly motivated Privacy Analyst to join our growing GFPL Privacy Team. This role will be pivotal in ensuring our global privacy practices align with relevant legislation, including GDPR, CCPA, and other applicable data protection laws. The Privacy Analyst will be responsible for providing expert guidance on privacy matters, supporting the implementation and maintenance of our privacy program. 

Responsibilities & Duties but not limited to:

• Assist in the development, implementation, and maintenance of a global telecom company's HR global privacy program, including policies, procedures, and training materials.
• Conduct privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) for new and existing projects and initiatives.
• Monitor and analyse changes in global privacy laws and regulations and provide recommendations for compliance.
• Maintain accurate records of data processing activities and ensure compliance with data retention policies.
• Produce and submit required documentation to secure the approval of Data Privacy Officers (DPO) across multiple markets, ensuring that Talent Acquisition processes adhere to Privacy regulations.
• Review AI functionality in the recruitment system; collaborate with system vendors to document AI sub-processes and functionality. Update Privacy Notices where AI is utilized.
• Conduct internal privacy audits and assessments to identify and mitigate potential privacy risks.
• Respond to and investigate data subject requests (DSARs) and data breaches in a timely and efficient manner.
• Provide guidance and support to internal stakeholders on privacy-related matters.
• Work closely with the Global Privacy Teams.
• Collaborate with legal, IT, and other departments to ensure consistent application of privacy principles across the organisation.
• Assist with regulatory inquiries and audits.
• Develop and deliver privacy training programs for employees.
• Promote a culture of privacy awareness across the organization.
• Create and maintain privacy-related documentation and resources.
• Support the company in its global expansion, ensuring that privacy by design principles is followed.
• Work with international teams to meet global privacy requirements.

 Requirements

• Relevant certifications (e.g., CIPP/E, CIPM, CIPT) are highly desirable.
• Ability to work in a fast-paced environment.
• Data protection law and regulation (GDPR, CCPA, etc.) exposure is essential
• High ability to conduct Privacy impact assessments (PIAs) and data protection impact assessments (DPIAs)
• Risk management and compliance experience
• Proficient in dealing with Data subject access requests (DSARs)
• Experienced in delivering training and awareness
• Excellent written and verbal communication skills