At a Glance
- Tasks: Manage data rights requests and ensure compliance with privacy laws for clients.
- Company: Join a leading consultancy with a focus on data privacy and compliance.
- Benefits: Enjoy competitive pay, generous holiday, and a range of wellness perks.
- Other info: Flexible hybrid working and opportunities for professional growth await you.
- Why this job: Make a real impact in data privacy while developing your skills in a dynamic environment.
- Qualifications: Experience in GDPR compliance and excellent communication skills are essential.
The predicted salary is between 36000 - 60000 £ per year.
We have an exciting, permanent opportunity for a Risk & Compliance Consultant / Data Rights Manager to join our Risk Advisory Team based at any of our 11 UK offices (hybrid working). As a Data Rights Manager, you will play a central role in ensuring our clients meet their legal and ethical obligations when responding to data subject rights (DSR) requests. Working within a fast paced, client‑facing data privacy consultancy, you will coordinate, manage, and enhance end‑to‑end processes for handling rights requests under GDPR, UK GDPR, and global privacy frameworks. This is a hands‑on operational and advisory role, requiring strong privacy knowledge, excellent communication skills, and the ability to manage multiple cases and stakeholders simultaneously.
A Snapshot Of Your Day
- Data Subject Rights (DSR) Management
- Lead and manage the full lifecycle of data subject rights requests (e.g., access, erasure, rectification, objection, portability) on behalf of clients.
- Conduct identity verification, scope clarification, and data discovery activities.
- Coordinate with client stakeholders, IT teams, HR, marketing, and third‑party processors to collect relevant data.
- Review, redact, and quality‑check disclosure packs to ensure accuracy and compliance.
- Monitor and manage statutory deadlines, escalating risks early.
- Client Support & Advisory
- Act as a key point of contact for client DSR operations, providing guidance on rights interpretation and best practice.
- Interlock with client stakeholders e.g., IT, HR, Legal etc to advise and guide on process and any issues arising.
- On the client‑behalf, interface with the ICO or other supervisory bodies to seek best advice and/or manage complaints and investigations on behalf of the client.
- Translate regulatory requirements into clear, practical advice.
- Support clients in designing and optimising rights management workflows and governance.
- Provide ‘lessons learned’ and improvement feedback to the client throughout the process.
- Compliance & Quality Assurance
- Ensure DSR processes comply with GDPR/UK GDPR, Data Protection Act 2018, EDPB guidance, and emerging global privacy laws.
- Maintain robust audit trails and documentation.
- Identify case patterns, risks, and gaps and recommend process improvements.
- Process Improvement & Tooling
- Work with privacy consultants to enhance policies, procedures, templates, and work instructions.
- Contribute to the implementation or optimisation of DSR management tools and case management systems.
- Support knowledge base development and training materials.
- Reporting & Insights
- Prepare dashboards and reports for clients, highlighting volumes, trends, risks, and performance metrics.
- Understand and communicate insight from data supplied by the ICO on complaints, investigations and trends.
- Training & Awareness
- Deliver training and guidance to client teams on handling data rights, redaction, data discovery, and privacy literacy.
- Promote consistent, compliant, and customer‑centric DSR handling practices.
- Involvement in Privacy Practice
- Support the wider team and client base on other aspects of Data Privacy support e.g., breach and incident management, creation of DPIA’s, TRA’s, AI Assessments etc.
Required Experience & Qualifications
- Previous experience in a similar role with excellent working knowledge of GDPR/UK GDPR and data subject rights obligations.
- Experience managing DSR requests in a consultancy, in‑house privacy team, or legal environment.
- Excellent written communication and the ability to produce clear disclosure materials.
- Excellent organisational skills and the ability to manage multiple cases simultaneously.
- Experience with redaction tools and data discovery processes.
- Ability to navigate complex stakeholder environments calmly and professionally.
Desirable
- Professional privacy certification (e.g., CIPP/E, CIPM, BCS Data Protection).
- Experience in regulated industries such as financial services, healthcare, or technology.
- Meticulous attention to detail, with high integrity and ethical judgement.
What’s In It For You
- Competitive discretionary annual bonus.
- Core benefits paid for by BW including life assurance, group income protection, private medical cover and 25 days holiday per year with holiday trading.
- A generous pension scheme where we contribute 8% of your salary from day one of your employment.
- Employee Assistance Programme to support you and your family through any concerns or challenges you may experience.
- A comprehensive range of voluntary benefits to suit you (and your family) including an electric car leasing scheme, tech scheme, cycle to work scheme, dental cover, healthcare cash plan, health assessments, critical illness cover, extension of private medical cover or life assurance to family members, sports allowance – we pay up to 50% of your gym/sports membership (up to £50 pm), travel insurance, paid volunteering, and a broad range of discounts at hundreds of retailers including supermarkets, fitness centres, travel and leisure companies.
Accessibility
We are a Disability Confident Employer. If reasonable adjustments could support you, or if you would like more information on accessibility, please click here.
Risk & Compliance Consultant employer: Barnett Waddingham
At Barnett Waddingham, we pride ourselves on being an exceptional employer, offering a dynamic work environment that fosters professional growth and collaboration. Our hybrid working model across 11 UK offices allows for flexibility while providing comprehensive benefits, including a competitive bonus structure, generous pension contributions, and extensive voluntary perks tailored to support your well-being and work-life balance. Join us to be part of a forward-thinking team dedicated to making a meaningful impact in the field of data privacy and compliance.
StudySmarter Expert Advice🤫
We think this is how you could land Risk & Compliance Consultant
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend relevant events, and engage with professionals on LinkedIn. We can’t stress enough how personal connections can open doors that applications alone can’t.
✨Tip Number 2
Prepare for interviews by researching the company and its culture. Understand their approach to risk and compliance, and think about how your skills align with their needs. We want you to shine when it’s your turn to impress!
✨Tip Number 3
Practice your pitch! Be ready to explain your experience with data subject rights and GDPR in a clear, concise way. We recommend rehearsing with a friend or in front of a mirror to boost your confidence.
✨Tip Number 4
Don’t forget to follow up after interviews! A quick thank-you email can leave a lasting impression. We believe showing appreciation can set you apart from other candidates.
We think you need these skills to ace Risk & Compliance Consultant
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Risk & Compliance Consultant role. Highlight your experience with GDPR and data subject rights, and don’t forget to showcase your excellent communication skills!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re passionate about data privacy and how your previous experiences make you the perfect fit for our team.
Showcase Your Organisational Skills:Since this role involves managing multiple cases, be sure to mention any relevant experience that demonstrates your organisational skills. We love seeing how you handle complex stakeholder environments!
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It’s the best way for us to keep track of your application and get back to you quickly!
How to prepare for a job interview at Barnett Waddingham
✨Know Your GDPR Inside Out
Make sure you brush up on your knowledge of GDPR and UK GDPR regulations. Be prepared to discuss how these laws apply to data subject rights requests, as well as any recent changes or trends in data privacy. This will show that you're not just familiar with the basics but are also engaged with the evolving landscape.
✨Showcase Your Communication Skills
As a Risk & Compliance Consultant, you'll need to communicate complex information clearly. Practice explaining data rights processes in simple terms, and be ready to provide examples of how you've successfully navigated stakeholder communications in the past. This will demonstrate your ability to translate regulatory requirements into practical advice.
✨Prepare for Scenario-Based Questions
Expect questions that put you in real-world situations, such as managing a DSR request under tight deadlines. Think through potential scenarios and how you would handle them, including any challenges you might face and how you'd overcome them. This will help you illustrate your problem-solving skills and operational experience.
✨Highlight Your Organisational Skills
Since you'll be managing multiple cases simultaneously, it's crucial to showcase your organisational abilities. Prepare to discuss tools or methods you use to keep track of tasks and deadlines, and share examples of how you've successfully managed competing priorities in previous roles.
