Zurück

Data privacy officer

Location:

remote

Language:

Entry Level :

Team Size:

Purpose

The Data Protection Officer (DPO) is responsible for ensuring that the company complies with the European Union’s General Data Protection Regulation (GDPR) and other relevant data privacy laws. He’s also responsible for supporting our Untitled in all data protection-relevant matters.

Key Performance Criteria

  • Compliance: Maintaining GDPR compliance and other relevant legal frameworks in concert with our ISMS.

  • Training and Awareness: Completion of regular data protection training for staff.

  • Incident Response: Respond to data breaches and prevent them.

  • ISMS and audits: Integration with our ISMS; successful data protection audits if required.

  • Documentation: Keep & expand documentation of all data-protection relevant data.

Responsibilities & Accountabilities

  • Monitoring Compliance: Ensure the company adheres to GDPR in concert with our ISMS.

  • Policy Development: Draft and implement data protection policies, procedures, and guidelines.

  • Auditing: Regularly conduct internal audits and risk assessments on data processing activities.

  • Advisory Role: Serve as the point of contact for data protection queries from employees, customers, and regulatory authorities.

  • Data Breach Management: Oversee and manage the response to data breaches, ensuring compliance with notification timelines.

  • Data Subject Requests: Handle Data Subject Access Requests (DSARs) in a timely and accurate manner.

  • Documentation: Maintain and regularly update the Record of Processing Activities (RoPA).

Skills / Qualifications

  • Background: 3-year background in Law, IT, Data Security, or a related field. Certification as a Data Protection Officer is a plus.

  • Technical Knowledge: Familiarity with IT systems, data encryption, and cybersecurity practices. Familiarity with server hosting and software development is a plus.

  • Legal Understanding: In-depth knowledge of GDPR and German data protection regulations. Experience with ISO 27001 is a plus.

  • Communication Skills: Strong ability to explain technical and legal topics to non-specialist audiences.

What kind of person are we looking for?

  • Detail-Oriented: Able to track and ensure compliance with complex regulations.

  • Proactive: Anticipates risks and takes preventative measures.

  • Solution-oriented: Finds ways to keep up high data protection standards in a fast-changing environment.

  • Team Player: Collaborates effectively with other departments.

  • Integrity: Upholds high standards of confidentiality and ethical practices.

Critical Incidents to be considered

  • Data Breach Incident: Lead the immediate response, notify relevant authorities within 72 hours, and provide actionable remediation plans.

  • Customer Complaint: Handle disputes regarding mishandling of personal data and resolve them in alignment with GDPR requirements.


Wir akzeptieren nur Bewerbungen über das folgende Formular.

We only accept applications using the following form.

Wir akzeptieren nur Bewerbungen über das folgende Formular.

We only accept applications using the following form.

Jetzt bewerben

LUMASERV als Arbeitgeber