The Data Privacy Manager is responsible for the delivery of the Privacy Programme at British Land.
Responsibilities
- Co‑coordinate business‑wide activities and disseminate SME knowledge to ensure compliance with British Land’s legal and regulatory data protection obligations.
- Oversee the entire privacy programme as the point of escalation and work closely with the DPO and Records Officer.
- Provide privacy subject‑matter expertise across the organisation and monitor compliance with GDPR, the Data Protection Act 2018 and other relevant regulations.
- Manage the budget for Data Privacy and spend with external legal advisers, including advice on the implications of new privacy and data protection laws that impact the business.
- Create and maintain data protection notices, policies, standards, and guidance that reflect evolving services, business models, data usage and applicable laws.
- Promote a culture of privacy‑by‑design by advocating for the development, review and revision of policies, guidelines, projects and processes.
- Complete and maintain Privacy Impact Assessments and, where triggered, Data Protection Impact Assessments.
- Work with Information Security on Supplier Risk Assurance reviews and manage relationships with suppliers of tools and services used by the Data Privacy function.
- Assist the Procurement team with Data Sharing Agreements and contracts.
- Maintain ICO registrations and fee payments, and support the monitoring of Records of Processing.
- Provide training and advice to staff handling Data Subject Rights Requests, and manage large employment‑related requests with HR.
- Advises on and guides data protection requests from third parties and liaises with customers and employees who raise concerns.
- Investigate data breaches with Information Security, coordinate remedial actions and monitor implementation.
- Develop and deliver ongoing training and awareness activities to strengthen data protection awareness throughout the organisation.
- Define, plan and execute privacy audits, support implementation of remedial actions, and prepare compliance reports for senior management.
Qualifications
- Passion for data protection and experience advising on the application of privacy legislation and managing privacy risk.
- Strong understanding of UK data protection legislation and relevant guidelines.
- Experience drafting and reviewing data protection clauses for contracts and advising business units.
- CIPP/E certification.
- Ability to assess business risks and pragmatically recommend appropriate ways forward.
- Excellent interpersonal skills with the ability to build relationships and act as a trusted advisor.
- Strong verbal and written communication skills with meticulous attention to detail.
- Effective time‑management and prioritisation skills, capable of managing multiple workstreams.
- Pro‑active risk management mindset and confidence to work autonomously, seeking guidance when necessary.
- Enjoys fast‑paced environments with competing deadlines.
- Strong IT proficiency, particularly with Word, Excel, Outlook and SharePoint.
#J-18808-Ljbffr…
