Data Protection Assistant
We are seeking a detail-oriented Data Protection Assistant to join Skipton International. In this role, you will work as part of a team to identify, assess, and mitigate data protection risks within the business.
You will fully support the Data Protection Officer (DPO) in ensuring compliance with the Data Protection (Bailiwick of Guernsey) Law, 2017, and other applicable privacy laws. Additionally, you will assist the DPO in monitoring, reviewing, and advising on the effectiveness of data protection policies, procedures, and controls to help identify and mitigate data protection risks.
Key accountabilities
- Maintain data protection reports, complaints, incidents, breaches, and actions taken, identifying trends.
- Support the development and implementation of data protection policies, procedures, and best practices.
- Conduct periodic audits and data protection monitoring across business functions.
- Maintain records of processing activities (ROPA).
- Manage and respond to Subject Access Requests (DSARs) and other data subject rights (e.g., right to erasure, restriction, portability).
- Liaise with internal teams to gather necessary data for DSARs and ensure prompt responses.
- Design and deliver data protection training and awareness programs for employees.
- Conduct Data Protection Impact Assessments (DPIAs) for high-risk processing activities.
- Review Data Protection Agreements and contracts to ensure third-party compliance.
- Support vendor due diligence processes related to data protection and security.
- Act as a point of contact within the Data Protection Team.
- Ensure Data Subject Access Requests are responded to within regulatory deadlines.
- Support the implementation of process improvements to streamline workflows.
Essential requirements
Qualifications:
- Educated to A-Level standard or equivalent experience.
- Ability to establish and maintain a high degree of confidentiality and credibility at all levels.
Essential Experience:
- At least 1-3 years of experience in Banking, Finance, or other related fields.
Desirable:
- Professional qualification for this role (e.g., Data Protection Foundation or equivalent).
- Familiarity with information security best practices.
- Intermediate/Advanced Excel spreadsheet management skills.
- Ability to interpret complex regulations.
- Strong knowledge of the Data Protection (Bailiwick of Guernsey) Law, 2017, and GDPR principles.
- At least 1-2 years of experience in compliance, risk, data protection, or related fields.
- Understanding of data protection impact assessments and subject rights handling.
Related Careers