About the role

To assist and advise on data protection compliance at Zepz, You will support the Zepz Group Privacy function on all aspects of data protection and its related areas. Reporting to the Group Data Protection Officer, this is a diverse and varied role which will involve providing support with day to day operations within Zepz or as may be assigned, along with legal research and assessing risks associated with complex data processing activities. 

Reporting to the Group Data Protection Officer and directly supervised by the Group Data Privacy Manager, you will:

• Respond to data subject rights requests and queries sent to Sendwave.
• Provide timely updates to the Group Privacy Team relating to data breaches, escalated incidents and data subject rights issues.
• Conduct Data Protection Impact Assessments and Legitimate Interests Assessments and work closely with Sendwave internal and external stakeholders in order to ensure risk assessments are thorough and accurately capture associated privacy risks.
• Conduct Transfer Impact Assessments for the ZEPZ Group with particular emphasis on Sendwave’s international data transfers.
• Conduct ad hoc research on global and domestic privacy legislation, tracking changes and developments and communicating important updates to the team.
• Assist with conducting internal data protection audits, updating data maps and records of processing.
• Assist with global data privacy projects where required.
• Generally assist with administrative and other privacy assignments on behalf of the team and other tasks as may be defined by theGroup DPO to meet the operational needs of the ZEPZ Group.

What we’re looking for:

• Demonstrated experience gained in the field of privacy and data protection or tech security compliance. Including strong knowledge of GDPR and US privacy laws with robust analytical and research skills.
• Certified Information Privacy Professional (CIPP) or equivalent privacy certification is highly desired.
• Excellent organisational skills and the ability to manage, prioritise, work under pressure and meet tight deadlines.
• Strong verbal and written communications skills, in particular, being able to effectively communicate clearly and concisely.
• Self-directed, proactive, and creative: uses sound judgment and navigates ambiguity to get things done.
• Capable of designing and delivering data protection training for different audiences.
• Experience in conducting DPIAs, LIAs and liaising with stakeholders in order to complete DPIAs in a timely manner.
• Ability to work independently and take ownership of assignments, sometimes acting as the single point of contact for projects.

Salary : $15 - $0