Data Protection Officer

We’re currently recruiting a Data Protection Officer within our Legal, Risk and Compliance team to help us take things to the next level and advise the business as to how we can maximise our use of data in all aspects of our business in a legally compliant manner.

Key Responsibilities

• Implementing measures and a privacy governance framework to manage data use in compliance with the UK GDPR and other relevant legislation, including developing templates for data collection, advising on and assisting with data mapping and records of data processing, and vendor management reviews.
• Managing and conducting ongoing reviews of the Club’s privacy governance framework, and regular and ad hoc reporting on data privacy compliance within the organisation.
• Maintaining and regularly updating the Club’s Register of Processing Activities and supporting departments in identifying and documenting their processing activities.
• Monitoring changes in data protection laws and regulations (UK, EU, and globally where relevant) and providing solution‑focussed advice to the business to ensure compliance whilst achieving commercial objectives.
• Developing and delivering tailored data protection training and awareness campaigns across the business.
• Providing commercially‑minded advice and guidance on data protection matters, contributing to strategic priorities and mitigation of privacy risks.
• Drafting relevant policies and procedures – implementing and embedding those policies throughout the Club through training to ensure requirements are known and adopted across the business.
• Working with key internal stakeholders in the review of day‑to‑day operations and specific projects relating to data processing to ensure compliance with data privacy laws.
• Reviewing vendor contracts and other data processing and data sharing arrangements.
• Investigating data breaches, including actions to be taken, assessing trends and implementing any necessary improvements.
• Reporting to senior management, including the Club’s Audit and Risk Committee and Executive, on data protection matters as and when required.
• Overseeing, implementing and undertaking the process by which the Club responds to data subject access requests.
• Managing the Club’s relationship and correspondence with the ICO.
• Liaising with counterparts at other organisations, where necessary/desirable to do so.
• Collaborating with the Club’s IT and technology teams to assess any potential privacy implications of adopting new technologies, systems and/or platforms.
• Supporting the Club’s commercial and digital innovation projects with privacy input.

Measures of Performance

• Drive and enthusiasm, with an ability to demonstrate pro‑active ownership and management of tasks and projects through to completion.
• Professional with strong technical abilities, including in the use of innovative technologies, and a willingness to continue developing.
• Excellent interpersonal and team working skills, that inspire trust and confidence both within the Club’s legal team and amongst its internal clients.
• An ability to effectively identify and manage issues and risks, delivering compliant solutions in novel environments.
• Adopting a positive ‘can do’ approach when seeking solutions.
• Strong commercial acumen and an ability to deliver solution‑focussed and pragmatic data protection advice.
• Effectively manages time and competing demands, escalates and delegates work where appropriate.
• Keeps senior legal team members well informed of progress on matters.
• Demonstrates a confident and persuasive communication style (verbal and written) which adapts to the audience and circumstances.
• Takes pride in the provision of their work.
• Excellent attention to detail.
• Ability to present and communicate complex information in a simple and compelling way.
• Well‑organised, with an ability to effectively manage competing demands in an extremely fast‑paced environment.

Safeguarding & Recruitment Statement

Safeguarding is fundamental to the success in all that we do. The Club follows a Safer Recruitment process for all roles. Successful candidates are to be reminded they would be subject to proportionate background, DBS and reference checks as required.

Reasonable Adjustments

We are committed to providing an inclusive and accessible recruitment process and will make reasonable adjustments at any stage of the application or interview process to support candidates with disabilities or specific needs. Please let us know if you require any adjustments so that we can ensure you have a fair and positive experience.

EEO Statement

We welcome applications from anyone regardless of age, disability, gender, race, or ethnic and national origins, religion or belief, or sexual orientation.