Data Privacy Lead

London, England, United Kingdom (Hybrid) Contract (5 months 25 days) Published 17 hours ago GDPR stakeholder management HR CIPP/EU IAPP CIPP/US General Data Protection Regulation CIPP/E Consulting data protection Job Title: Data Privacy Lead Job Location: Sunbury-on-Thames Contract Length: Until 30th April 2026 Industry: Oil and Energy, HR Services Working Hours: 8 per day/ 40 per week Role Overview: The Data Privacy Lead is responsible for leading privacy compliance activities within PC&C. The role collaborates with the Data Privacy Manager, Data Privacy Lead, CDPO, Digital Security, and the legal team to ensure data privacy requirements are met. Operations & Advisory is an internal global shared services organisation, responsible for delivering centralised and standardised people services for bp from a number of geographical delivery centres as appropriate for bp’s footprint. Operations & Advisory is the first point of contact for people related matters; the team are policy and process experts, dedicated to delivering the best employee experience. The purpose of this role is to lead privacy compliance activities within PC&C. The Data Privacy Lead will work closely with the Data Privacy Manager (DPM), Data Privacy Lead (DPL), Central Data Privacy Office (CDPO), Digital Security and the legal team where applicable. What you will do: Working within the compliance framework set by bp’s Central Data Privacy Office (CDPO) and working closely with stakeholders, the PC&C DPM and DPL, country data privacy officers and legal across bp, lead data privacy compliance activities across PC&C, including fostering a privacy culture and embedding applicable policies, procedures, training, and guidance materials. Partnering with PC&C stakeholders to ensure data privacy risks are considered and appropriately mitigated at the outset of new projects, products and initiatives. Holding an advisory role on the steps required for works council approvals, including any engagement with in-country data privacy officers. Periodically hold internal audits within PC&C to ensure the works council agreement is still aligned to systems and data, particularly focusing on any system enhancements. Accountable for record of processing activity and data privacy impact assessments being completed for any new solutions and reviewing existing record of processing activity assessments for any changes to existing solutions, also ensuring any additional sign offs required from works councils are considered. Provide oversight for all transparency and individuals rights processes and procedures within PC&C including drafting and maintaining privacy notices and processes for subject access requests and similar rights. Provide front line awareness and management of data privacy risks within PC&C as part of bp’s group risk management processes. Assist with the response to incidents or issues involving personal data in PC&C including developing and communicating lessons learned. Deputising for the Data Privacy Manager as and when necessary Act as a senior source of expertise for data privacy, providing specialist advice to guarantee legal grounds for business use cases. Partnering with PC&C and Solutions Technology Leadership to set a shared strategy and compelling roadmap minimising risks from non-compliance, hence reducing costs Partnering with data privacy agencies and benchmarking externally to dial up innovation (compliance) and drive down cost Embracing a culture of performance to drive cost efficiency, operational excellence and innovation What you will have: Required qualifications Formal education: Relevant degree or equivalent qualifications Skills Proficiency with Excel spreadsheets. Project Management skills. Highly numerate / strong analytical skills required. Interpersonal and communication skills Technical: Firm understanding of privacy laws, regulations, and principles in jurisdictions where bp operates, e.g., the EU General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, and in particular US privacy legislation such as the California Consumer Privacy Act 2018. Psychological safety Legal and regulatory environment and compliance Stakeholder management Continuous improvement Performance and planning Commercial acumen Agile core principles Creativity and innovation Budget management Customer service delivery excellence Workforce Planning Resilience Teamwork Leadership Customer centric thinking Knowledge sharing Behavioural Ability to interact with employees at all levels of the organisation. Holds themselves and others to a high standard of accuracy and attention to detail. Able to adapt to changing priorities, peaks in workload and deadlines Excellent interpersonal and communication skills, with experience of communicating with stakeholders at all levels. This role requires engagement with various levels of the organisation from business leadership to individual contributors and support functions across bp. A willingness to deal with problems or new tasks together and connecting the dots across seemingly disparate initiatives. Desirable experience Relevant certifications such as IAPP CIPP/US or CIPP/E Experience advising multi-national organizations and/or working in a large corporate environment Strong stakeholder management skills Effective project management and communication skills Proficiency in using MS Office/Office365 applications Excellence communication (verbal & written) Internal (i.e. within bp) key relationships: This role reports to the Data Privacy Manager and is part of the Operations & Advisory Team, working closely with the CDPO and PC&C to ensure data privacy requirements are met. External (i.e. outside of bp) key relationships: As needed will work with external vendors on all data privacy related matters as well as attending networking events to ensure their knowledge remains relevant in the data privacy space We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.