Data Protection Specialist - DSAR/DPIA/ROPA/GDPR
β - Featured Role | Apply direct with Data Freelance Hub
This role is for a Data Protection Specialist in Stevenage, with a contract starting October 1st. Inside IR35, pay rate is unspecified. Key skills include UK GDPR compliance, DSAR and DPIA management, and strong communication. CIPP/E or similar certification is desirable.
π - Country
United Kingdom
π± - Currency
Β£ GBP
-
π° - Day rate
-
ποΈ - Date discovered
September 24, 2025
π - Project duration
Unknown
-
ποΈ - Location type
Unknown
-
π - Contract type
Inside IR35
-
π - Security clearance
Unknown
-
π - Location detailed
Stevenage
-
π§ - Skills detailed
#Security #Scala #Cybersecurity #Consulting #GDPR (General Data Protection Regulation) #Compliance #DPIA (Data Protection Impact Assessment)
Role description
Data Protection Specialist - Stevenage - Inside IR35 - Start 1st of October or before
β’ Potential contract to permanent opportunity available
Job Purpose:
As Data Protection Specialist, you will support in delivering the Group's data protection compliance programme.Ensures operational consistency in data protection practices, and acts as a key point of contact across business divisions.
You will play a hands-on role in ensuring adherence to data protection laws including UK GDPR and the Data Protection Act 2018, helping to embed a strong culture of privacy and risk awareness across the Group.
Principal Accountabilities:
β’ Support Compliance Oversight: Assist in overseeing data protection practices across the Group, escalating risks or incidents to the CPO as needed.
β’ DSAR and DPIA Coordination: Take ownership of managing and responding to Data Subject Access Requests (DSARs), in conjunction with internal colleague and external providers where appropriate.
β’ Conducting Data Protection Impact Assessments (DPIAs) in line with established procedures.
β’ ROPA Maintenance: Support the creation, ongoing maintenance and accuracy of the Record of Processing Activities
β’ Contract & Processor Reviews: Support in the review of and advise on data protection clauses in contracts and data sharing agreements, escalating complex matters where appropriate.
Success Measures:
β’ Timely and compliant responses to DSARs and other data rights requests
β’ Effective delivery of privacy training sessions across departments
β’ Up-to-date and accurate records of processing and DPIAs
β’ Positive feedback from internal stakeholders and staff
β’ Demonstrable improvements in awareness and compliance within the business
Skills, Know How and experience:
Essential:
β’ Solid working knowledge of UK GDPR, Data Protection Act 2018, other relevant legislation and related guidance
β’ Experience supporting organisational compliance within a complex or multi-entity/multiple divisional environment
β’ Experience managing DSARs, DPIAs, and maintaining ROPA
β’ Strong communication and interpersonal skills, with the ability to build relationships across departments
β’ Detail-oriented with excellent organisational and prioritisation skills
Desirable:
β’ CIPP/E, BCS, or other privacy-related certifications (or working towards one)
Other:
β’ Experience delivering training or awareness sessions
β’ Familiarity with data protection software or case management tools
β’ Working knowledge of cybersecurity principles and their intersection with privacy
Please note you will receive an automated response advising you that we have received your CV.
Morgan Philips Group is a global talent solutions business that disrupts conventional thinking in executive search, recruitment and talent consulting. We operate in over 18 markets in Europe, North & South America, Asia, and the Middle East & Africa. We understand that the future is digital and social, so we embrace the latest technology, including video ads and CVs, as well as social recruiting. Our innovative services are tailored to the new world of work yet we do not lose sight of the fact that employees be they existing and potential are ultimately human beings.
We are committed to ensuring that all job applicants are treated equally, without discrimination because of gender, sexual orientation, marital or civil partner status, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.
Data Protection Specialist - Stevenage - Inside IR35 - Start 1st of October or before
β’ Potential contract to permanent opportunity available
Job Purpose:
As Data Protection Specialist, you will support in delivering the Group's data protection compliance programme.Ensures operational consistency in data protection practices, and acts as a key point of contact across business divisions.
You will play a hands-on role in ensuring adherence to data protection laws including UK GDPR and the Data Protection Act 2018, helping to embed a strong culture of privacy and risk awareness across the Group.
Principal Accountabilities:
β’ Support Compliance Oversight: Assist in overseeing data protection practices across the Group, escalating risks or incidents to the CPO as needed.
β’ DSAR and DPIA Coordination: Take ownership of managing and responding to Data Subject Access Requests (DSARs), in conjunction with internal colleague and external providers where appropriate.
β’ Conducting Data Protection Impact Assessments (DPIAs) in line with established procedures.
β’ ROPA Maintenance: Support the creation, ongoing maintenance and accuracy of the Record of Processing Activities
β’ Contract & Processor Reviews: Support in the review of and advise on data protection clauses in contracts and data sharing agreements, escalating complex matters where appropriate.
Success Measures:
β’ Timely and compliant responses to DSARs and other data rights requests
β’ Effective delivery of privacy training sessions across departments
β’ Up-to-date and accurate records of processing and DPIAs
β’ Positive feedback from internal stakeholders and staff
β’ Demonstrable improvements in awareness and compliance within the business
Skills, Know How and experience:
Essential:
β’ Solid working knowledge of UK GDPR, Data Protection Act 2018, other relevant legislation and related guidance
β’ Experience supporting organisational compliance within a complex or multi-entity/multiple divisional environment
β’ Experience managing DSARs, DPIAs, and maintaining ROPA
β’ Strong communication and interpersonal skills, with the ability to build relationships across departments
β’ Detail-oriented with excellent organisational and prioritisation skills
Desirable:
β’ CIPP/E, BCS, or other privacy-related certifications (or working towards one)
Other:
β’ Experience delivering training or awareness sessions
β’ Familiarity with data protection software or case management tools
β’ Working knowledge of cybersecurity principles and their intersection with privacy
Please note you will receive an automated response advising you that we have received your CV.
Morgan Philips Group is a global talent solutions business that disrupts conventional thinking in executive search, recruitment and talent consulting. We operate in over 18 markets in Europe, North & South America, Asia, and the Middle East & Africa. We understand that the future is digital and social, so we embrace the latest technology, including video ads and CVs, as well as social recruiting. Our innovative services are tailored to the new world of work yet we do not lose sight of the fact that employees be they existing and potential are ultimately human beings.
We are committed to ensuring that all job applicants are treated equally, without discrimination because of gender, sexual orientation, marital or civil partner status, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.
