Compliance Officer (Data Privacy/GDPR)
London, UNITED KINGDOM Personal services
Job description
· Job Description:
About DXC Technology
DXC Technology (DXC: NYSE) is the world’s leading independent, end-to-end IT services company, helping clients harness the power of innovation to thrive on change. Created by the merger of CSC and the Enterprise Services business of Hewlett Packard Enterprise, DXC Technology serves nearly 6,000 private and public sector clients across 70 countries. The company’s technology independence, global talent and extensive partner network combine to deliver powerful next-generation IT services and solutions. DXC Technology is recognized among the best corporate citizens globally. For more information, visitwww.dxc.com
We are a significant presence serving the London Insurance market (both Lloyd’s and company markets) with the processing of policy and claims related transactions. We are looking for a mid-level Compliance Officer to complement a small Risk & Compliance function, based in central London (The Gherkin) which services the London Market Account through its Joint Ventures, Xchanging Insurance Services Limited and Xchanging Claims Services Limited. We require a motivated and ambitious professional, who is keen to provide broad based compliance support with particular emphasis on data privacy compliance.
There is room to grow within the team and within the wider DXC company. The candidate should have experience in the insurance industry and we require experience with implementing and executing GDPR compliance, e.g. DPIA’s, data subject rights, responsibilities as data processor and controller, privacy by design etc with an insurer, broker, or Lloyds managing agent.
Key Responsibilities:
Data Privacy/GDPR:
· Maintain current and compliant, the various activities of a Data Processor, where we process personal data for our clients. This includes reviewing all policies and processes to ensure these remain GDPR Compliant, as well as ensure all operational aspects meet compliance in execution.
· Maintain current and compliant, the various activities of a Data Controller/employer where this concerns personal data in compliance with GDPR and any other applicable data privacy laws and regulations.
· Act as SME for all data privacy related queries.
· Conduct bi-annual assessments of RoP to ensure process is followed and these remain up to date.
· Maintain up to date, the GDPR Risk and Control Logs.
· Review DPIA’s and provide recommendations for actions.
· Work closely with the DPO and liaise as required.
· Organise packs for and help run, bi-monthly Data Privacy Compliance Meetings.
· Prepare quarterly reports on the data privacy compliance program for senior management and Boards
· Ensure training is conducted and logs are maintained as necessary.
· Attend cross market GDPR working group meetings.
· Prepare monthly compliance newsletters for circulation to staff.
Essential Skills/Qualifications:
· At least 2/3 years experience working in the London insurance industry
· At least 2/3 years working in compliance or legal departments working on data privacy issues.
Desirable Skills/Qualifications:
· A background working in a technology environment
· An understanding of the broader ICO requirements on reporting etc.
· Have a “can do” attitude and show initiative and ability to work independently.
· A willingness to be flexible and help out in other compliance areas, fill in for staff members as needed.
DXC Technology is committed to the development of a fully inclusive workforce. All applications for employment are assessed purely on merit, against the capabilities and competencies required for the role.
DXC Technology does not discriminate on the basis of gender, ethnic origin, race, faith or sexual orientation.