Data Protection Governance Specialist (FTC)

Collinson is seeking a Data Protection Governance Specialist to support the development, maintenance, and enhancement of our data protection compliance framework. This role focuses on ensuring policies, procedures, guidance, templates and governance materials are accurate, consistent, practical and aligned with applicable legal and regulatory requirements.

Purpose of the job

The position will work closely with the Group DPO and the wider Data Protection team to strengthen accountability, improve framework maturity and provide clear, proportionate data protection guidance across the business.

Key Responsibilities

• Support the maintenance and enhancement of Collinson's data protection compliance framework, ensuring policies, standards, procedures and guidance remain accurate, practical and aligned to applicable data protection laws.
• Review, update and develop data protection policies, process documents, templates, playbooks, checklists and internal guidance materials.
• Work with the Group DPO and wider Data Protection team to improve the structure, consistency and accessibility of core data protection documentation.
• Support the embedding of data protection governance processes across the business, including clear ownership, escalation routes, approval flows and evidence of compliance.
• Assist with the implementation and ongoing improvement of the organisation's data protection accountability framework, including alignment with recognised regulatory expectations such as the ICO Accountability Framework.
• Help maintain key data protection governance records, including policy registers, control trackers, action logs, compliance evidence and framework maturity assessments.
• Support the development of practical guidance for business stakeholders on topics such as lawful basis, transparency, retention, international transfers, DPIAs, process management, records of processing and data protection by design and by default.
• Assist in identifying gaps, inconsistencies, or outdated materials within the existing data protection framework and propose proportionate improvements.
• Work with stakeholders across various business functions to gather information and support the implementation of framework improvements.
• Support the preparation of data protection reporting materials, including progress updates, risk summaries, action plans and governance dashboards.
• Contribute to the development and refresh of data protection training and awareness materials, ensuring they reflect current policies, processes and regulatory expectations.
• Assist with the rollout and communication of updated data protection policies, procedures and guidance to relevant business areas.
• Support readiness activities for audits, assurance reviews and regulatory accountability requirements by helping collate documentation and evidence of compliance.
• Monitor and help document changes in internal processes, business activities or regulatory expectations that may require updates to the data protection framework.
• Promote a pragmatic, risk‑based approach to data protection governance, ensuring documentation and processes are clear, usable and proportionate for the business.

Knowledge, skills, and experience required

• Hold accredited qualifications in information governance, records management and/or data protection (BCS/CIPP), or equivalent gained in relevant experience.
• Expert knowledge of data protection and applicable legislation across multiple jurisdictions, information security controls and compliance management.
• Proven experience in advising and/or implementing data protection compliance programmes in complex environments.
• Able to explain data protection risks clearly and in non‑technical language to the business and how they apply.
• Proven project management skills with a focus on delivery and results.
• A thorough understanding of best practice in risk management and compliance frameworks.
• Ability to interpret information, identify risk and provide feedback in a clear and concise manner.
• Attention to detail and ability to interpret information, make sound decisions and take ownership of issues to resolution.
• Excellent interpersonal and communication skills, both written and oral.
• Organised, time‑management skills and an ability to work under pressure and flexibly to meet business deadlines.
• Experience of using tools and technology to train, communicate and improve risk culture and demonstrable experience in developing simple, effective and easy to adopt policies.
• Solid understanding of regulations, industry standards, and leading industry practices.

Collinson is an equal opportunity employer and welcomes differences in all their forms including colour, race, ethnicity, gender identity, sexual orientation, neurodivergence, family status, age, individuals with disabilities and people from all backgrounds, cultures and experiences as we strongly believe this contributes to our on‑going success.

Location: London – Hybrid Remote