Assignment Description

Our client is currently seeking a Data Protection Expert to join the Operational Excellence Team.

The main responsibilities for this role include establishing data protection and privacy monitoring and response processes, increasing awareness and knowledge within the organization, and collaborating closely with stakeholders in both line organizations and projects. Additional duties involve coordinating requests and investigations, supporting and guiding the procurement of external suppliers, and organizing and structuring data processing descriptions.

More detailed responsibilities include:

• Further developing the compliance culture where data protection compliance is an integrated part of the business strategy. This involves:
  • Providing guidance in developing a culture of compliance and managing stakeholder relations related to GDPR (both internal and external).
  • Creating an open and trustful environment.
• Creating, implementing, and monitoring a data protection compliance process for all projects and initiatives. This includes:
  • Following up and regularly updating the compliance process.
  • Monitoring key providers’ data protection compliance requirements in alignment with business owners.
• Reviewing project plans to mitigate data protection risks by:
  • Conducting Data Protection Impact Assessments (DPIAs).
  • Performing due diligence on external providers.
  • Reviewing IT design, data protection agreements, and ensuring governance compliance during the run phase.
• Drafting, steering, and implementing procedures for reviews and monitoring internal controls.
• Creating and conducting compliance training and awareness programs for both employees and project managers.
• Reviewing HR processes to identify data protection risks and provide solutions, including supporting risk mitigation efforts.
• Serving as the functional lead of the HR Data Protection Coordinators (DPCs) by:
  • Proactively aligning and coordinating cross-HR compliance standards.
  • Developing, coordinating, and following up on HR internal minimum requirements.
  • Supporting the risk management team with risk assessments within the GDPR compliance area.

Scope for data protection topics includes:

• Projects and initiatives within People & Culture.
• Delivery/service processes within our client’s People & Culture process landscape.
• Suppliers to the People & Culture.
• Geographical scope covers all countries where People & Culture operates.

Qualifications:

• 5-7 years of experience working with Data Protection/Privacy topics in international (European) companies.
• Excellent knowledge of GDPR.
• Excellent English skills.
• Swedish language skills are a merit.