Data Protection Officer in Bristol

Data Protection Officer (DPO) – Blue Ventures

Location: Remote working within the UK. We will also consider applicants from other BV operational hubs, provided that the candidate has strong knowledge and experience of UK GDPR and data protection legislation.

Contract status & duration: Permanent, Full Time

Start date: As soon as possible

Application closing date: 1 December 2025

Salary Band: C1

Remuneration: £42,705 – £50,863 gross per annum (UK national band); £46,896 – £53,653 gross per annum (London, UK); IDR 286,984,519 – IDR 355,860,803 gross per annum (Indonesia); KES 2,871,375 – KES 3,560,505 gross per annum (Kenya); TZS 41,495,072 – TZS 51,453,890 gross per annum (Tanzania); MGA 36,755,641 – MGA 44,933,771 gross per annum (Madagascar); XOF 18,577,559 – XOF 23,036,173 gross per annum (Senegal); BZD 50,755 – 58,211 (Belize); USD 15,679 – 19,144 (Timor Leste)

Reports to: Chief Executive Officer and Chair of the Board of Trustees

Blue Ventures is a marine conservation organization that puts people first. We support coastal fishers in remote and rural communities to rebuild fisheries, restore ocean life and build lasting pathways to prosperity. Our work began two decades ago in Madagascar’s remote coastal communities and is growing globally.

Across a dozen countries, we’re partnering with traditional fishers and community organizations to design, scale, strengthen and sustain fisheries management and conservation at the community level. We bring partners together in networks to advocate for reform, and share tools and best practices to support fishing communities across the globe.

Summary: This role is for a Data Protection Officer (DPO) to ensure Blue Ventures meets its obligations under the UK General Data Protection Regulation (UK GDPR) and the UK Data Protection Act 2018. Reporting to the Chief Executive Officer/Chair of the Board of Trustees, the statutory DPO will monitor compliance and data practices internally to ensure the organisation and its functions comply with the applicable requirements under the GDPR/DPA 2018. The DPO will be responsible for staff training, data protection impact assessments, and internal audits. The DPO will also serve as the primary contact for supervisory authorities and individuals whose data is processed by the organisation.

In this role, you will work closely with the Legal, Compliance, Public Policy, and Information Security functions to develop and monitor policies and standards applicable to the business in compliance with the GDPR/DPA 2018 and other regional legislation in countries BV operates in.

Key responsibilities:

• Monitor compliance and internal data practices to ensure GDPR/DPA 2018 obligations are met.
• Provide staff training on data protection.
• Conduct data protection impact assessments.
• Perform internal audits of data protection processes.
• Act as the primary contact with supervisory authorities and individuals whose data is processed.
• Develop and monitor policies and standards in collaboration with Legal, Compliance, Public Policy, and Information Security functions.

Seniority level: Mid-Senior level

Employment type: Full-time

Job function: Information Technology

Industries: Non-profit Organizations