Company Description
Xeinadin was established in 2019 when more than 100 successful, independent, business advisory and accountancy practices across the UK and Ireland came together to re-imagine the future of accountancy. Our collective mission to provide locally forged, trusted business advice to SMEs through forward-thinking, close-knit relationships remains pivotal to our growth. It is our people who help drive our business forward, and we offer them future-focused career opportunities whilst supporting the individual specialisms. Our regional offices of over 1800 colleagues operate in collaboration across the Group, combining collective expertise to maximise our people’s potential. As part of one Xeinadin, our colleagues are able to draw on expertise and support from across our UK, Ireland and central teams, as well as benefitting from being a part of their local communities.
Job Description
The Data Protection Officer will oversee firmwide (UK/ ROI) data protection strategy, ensuring compliance with applicable data protection laws, and promoting a culture of data privacy. They will develop and implement policies, provide expert guidance, and liaise with regulatory bodies to safeguard client and employee data.
Key Responsibilities
1. Develop, implement, and oversee the firm’s data protection policies, procedures, and frameworks to ensure compliance with relevant regulations, such as the General Data Protection Regulation (GDPR), Data Protection Act, and other applicable laws.
2. Serve as the firm’s primary point of contact for data protection authorities and oversee any regulatory inquiries or audits.
3. Monitor compliance with data protection laws and internal policies, including conducting regular audits and risk assessments.
4. Provide training and awareness programs to staff on data privacy obligations and best practices.
5. Act as the first point of contact for data subjects regarding inquiries and requests related to personal data rights.
6. Advise Exco on data protection risks, legislative changes, and strategies for maintaining compliance.
7. Collaborate with IT, HR, and other departments to implement robust data security measures.
8. Conduct Data Protection Impact Assessments for new projects and systems to assess risks and recommend mitigations.
9. Maintain documentation, including records of processing activities and incident response plans.
10. Lead responses to data breaches, ensuring prompt investigation, reporting, and remediation.
Key Requirements
1. Minimum 5 years of experience in data protection, compliance, or a related regulatory role, preferably within a professional services firm.
2. Strong knowledge of GDPR, UK Data Protection Act, ePrivacy Regulation, and other international privacy frameworks.
3. Experience in conducting risk assessments, audits, and incident response management.
4. Excellent communication and stakeholder management skills, with the ability to influence and educate colleagues at all levels.
5. Execution minded with a clear perception of requirements, business minded, and solutions orientated.
Additional Requirements
Model: Hybrid
Salary: Competitive
Benefits:
* Company Pension Scheme
* 25 days of annual leave + bank holidays
* Additional annual leave days from certain levels of seniority
* Ability to buy up to 5 days of annual leave to reach a maximum of 30 days per annum
* Business closure over Christmas* (subject to exceptions and business needs)
* Life Assurance x4 annual salary
* Enhanced family leave policies
* Enhanced Company Sick Pay
* Employee Assistance Programme – 24/7 support, free and confidential
* Corporate Discounts Platform
Flexible Benefits platform with ability to opt-in to various insurances (level of seniority dependent & self-funded at corporate rates) such as:
* PMI single or family
* Critical Illness Cover
* Cash plan
* Cycle to work
* Eye care
* Dental
#J-18808-Ljbffr