EXCLUSIVE: DATA PROTECTION OFFICER - GDPR WITH AUDIT EXPERIENCE AND CYBER/INFORMATION SECURITY[...]

EXCLUSIVE: DATA PROTECTION OFFICER - GDPR WITH AUDIT EXPERIENCE AND CYBER/INFORMATION SECURITY KNOWLEDGE (WITH FLUENT ENGLISH & FRENCH) REQUIRED

€65K - €85K + Benefits including generous holiday, Bonus & Equity Paris + Some Travel

REF:4186D

Our Client, an exciting start‑up Fintech Bank, seeks a Data Protection Officer to educate employees on data compliance and conducting regular security audits. The role serves as the main point of contact between the company and the relevant data protection authorities in Europe and abroad. In this role, working closely with Legal, Compliance, Public Policy and Information Security teams, responsibilities include:

• Implementing measures and a privacy governance framework to manage data use in compliance with the GDPR, including developing templates for data collection, assisting with data mapping, and reviewing vendor management.
• Working with key internal stakeholders to review projects and related data to ensure compliance with local data privacy laws, completing and advising on privacy impact assessments where necessary.
• Serving as the primary liaison for the EBC and other EEA Data Protection Authorities on all data protection matters under the GDPR.
• Serving as the primary point of contact for queries within the business.
• Reviewing vendor contracts (including Model Clauses) and consents needed to implement projects, and ensuring filing requirements with local regulators are met.
• Monitoring changes to local privacy laws and making recommendations to the Data Privacy / Information Governance Committee when appropriate.
• Setting standards and reviewing policies and procedures globally that meet the requirements under the GDPR and any localisation requirements in countries of operation.
• Developing and delivering privacy training to various business functions.
• Developing strategies and initiatives to ensure engagement with key internal and external stakeholders.
• Coordinating and conducting data privacy audits.
• Collaborating with Information Security teams to raise employee awareness of data privacy and security issues, and providing related training.

You must be a graduate fluent in English and French with at least two years of experience in Data Protection, including audit experience, and knowledge of handling cyber attacks, as well as an excellent knowledge of the GDPR. A law degree is useful, but strong IT skills especially in Information Security are more important. A Computer Science/IT qualification is also valuable.

The office is located in La Défense and is office‑based, with some travel mainly to Cyprus or New York. The role includes an equity package with shares granted annually with a three‑year vesting period, as well as a generous unlimited holiday scheme subject to managerial approval.