Deputy Global Data Protection Officer & UK Data Protection Officer in Luton

Are you ready to take on a pivotal role in data protection at AstraZeneca? In this role, you will navigate complex data processing activities across our enterprise, supporting the Global Data Protection Officer (GDPO) and acting as the registered Data Protection Officer for our UK operations. Reporting to the Global & EU Data Protection Officer, you will be instrumental in leading AstraZeneca\'s Global Privacy Programme, providing expert advice and oversight to ensure compliance with data privacy regulations in the UK. Collaborate with our Data Privacy Office, legal department, and broader compliance organisation to improve privacy risk management and foster a privacy approach across AstraZeneca.

Accountabilities

• Serve as the UK DPO, acting as the company representative for data subjects and supervisory authorities.
• Maintain oversight of licenses, registrations, and regulatory requirements for compliant data processing and transfer within AstraZeneca UK.
• Oversee responses to subject access requests in the UK.
• Act as a point of contact for authorities on data protection impact assessments and support UK business operations in performing necessary assessments.
• Report significant personal data breaches in the UK, guiding on remediation measures and conducting trend analysis.
• Support the GDPO in maintaining licenses and registrations for compliant data processing within AstraZeneca Group and partners/vendors.
• Consult with the Global Privacy Office on data protection impact assessments and serve as a contact for authorities.
• Partner with the Global Assurance team to monitor compliance with data protection laws and provide assurance on our global compliance program.
• Support internal risk reporting and external reporting such as the AstraZeneca Annual and Sustainability Report.
• Advise members of the Privacy Office and Global Compliance personnel on company policy, impact assessments, risk assurance capabilities, remediation activities, and high-risk projects.
• Collaborate with the Enterprise Data Office to horizon scan for regulatory developments globally.

Essential Experience

• Legal degree or qualifications with proven experience in privacy law and/or Data Privacy Programs.
• In-depth knowledge of GDPR, EU/EEA local data protection legislation, UK Data Protection Act and UK GDPR, familiarity with US, China and other local data privacy regulations.
• Proficient in privacy programme elements and standard processes/tools.
• Substantial experience working in a multi-national and multi-regional organisation in a highly regulated sector.
• Familiarity with data processing operations in the Global Bio-pharmaceutical sector.
• Significant experience in pharmaceuticals or a related industry; corporate governance, health care regulations, laws and standards.
• Excellent analytical, written and oral communications skills.
• Strong collaborative, partnering, and interpersonal skills, ability to influence across different levels and sectors of the organisation.
• Strong experience speaking to and working with senior leaders, including Board members and executive team members.
• Agility to work independently with high ethical standards, trustworthy, operating with absolute discretion.
• Able to remain independent and objective while collaborating effectively with various parties.

Desirable Skills/Experience

• Solid knowledge of US federal and state privacy regulations and China privacy/cyber-security regulations.
• IAPP certifications (e.g., CIPP/US, CIPT, CIPM).
• CIPP certification.
• Proficient in digital tools, familiarity with use of AI, machine learning and automation across different business applications (e.g., marketing, business services and processes, research and drug development activities).
• Familiarity with computer security frameworks and technologies.
• Experience interacting with regulatory authorities, auditors, inspectors, and other third external assurance parties.

When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working gives us the platform we need to connect, work at pace and challenge perceptions. That\'s why we work, on average, a minimum of three days per week from the office. But that doesn\'t mean we\'re not flexible. We balance the expectation of being in the office while respecting individual flexibility. Join us in our unique and ambitious world.

At AstraZeneca, you\'ll find yourself part of a team of specialists who are essential to our growth. We encourage entrepreneurial thinking in a dynamic environment where your expertise is respected across the enterprise. Our commitment to development means you\'ll have opportunities to deepen your skills or explore new areas. Collaborate with diverse colleagues to solve challenges that make a meaningful impact on society.

Ready to make an impact? Apply now to join AstraZeneca\'s journey towards innovation and excellence!

Date Posted: 05-Jan-2026

Closing Date: 19-Jan-2026

Our mission is to build an inclusive and equitable environment. We want people to feel they belong at AstraZeneca and Alexion, starting with our recruitment process. We welcome and consider applications from all qualified candidates, regardless of characteristics. We offer reasonable adjustments/accommodations to help all candidates to perform at their best. If you have a need for any adjustments/accommodations, please complete the section in the application form.