With immediate effect, we are looking for a Privacy Officer to be based at our offices in Limassol, Cyprus.
Main Duties and Responsibilities
- Assists in developing, implementing, and maintaining data protection policies and procedures.
- Assist in monitoring and ensuring the company’s compliance with the General Data Protection Regulation (GDPR).
- Identifies and mitigates privacy risks associated with data processing activities.
- Conduct Data Protection Impact Assessments for new projects, processes, or systems that involve processing personal data
- Stays up-to-date with legislative changes, case law, and best practices in data protection.
- Provides advice and guidance to Functions / Service Lines / Competencies on data protection matters.
- Assists in interpreting and applying data protection laws in the context of the Company’s operations.
- Drafts and reviews privacy notices, consent forms, data processing agreements, and other GDPR-related documents as requested.
- Maintains records of processing activities as required under GDPR.
- Supports the investigation and management of data breaches.
- Assists in reporting data breaches to supervisory authorities and affected individuals when necessary
- Handle data subject requests, including access, rectification, erasure, and data portability requests
- Ensure timely and accurate responses to data subject inquiries in line with GDPR requirements
- Support the development and delivery of GDPR training and awareness programs for employees
- Promote a culture of data protection within the organization
- Review and draft data protection clauses in contracts with third parties, ensuring GDPR compliance
- Assist in communications with data protection authorities and respond to regulatory inquiries
- Stay updated on changes in data protection laws and regulations, and advise the organization accordingly
- Participate in internal audits and assessments to ensure ongoing GDPR compliance
- Identify areas for improvement and recommend corrective actions
- Acts as a link/point of contact between Uniteam and the GDPR vendor
- Ensures that personal data protection principles are aligned with other compliance programs within the organization, such as IT security and ISO standards
- Assists in developing and implementing an incident response plan
- Supports the preparation of annual or semi-annual reports on the data protection program for senior management
- Assists in the management of third-party risks (e.g. vendors) and ensures compliance with GDPR (e.g. perform Data Transfer Legitimate Assessment)
Job Requirements
- University Degree in Law or equivalent.
- Minimum 1-2 years of experience in a legal role (preferably with a focus on GDPR or data protection law).
- Excellent command of spoken and written English.
- Computer proficiency in word processing, spreadsheets, presentations, and communication (e.g. Microsoft Word, Excel, PowerPoint, Outlook).
Benefits
- 13th salary & Birthday Bonus
- Provident fund
- Employee discount card scheme
- Attractive remuneration package
- Flexible working hours
- Hybrid working model
- Corporate events
All CVs will be handled with the utmost confidentiality.