Senior Privacy and Data Protection Executive, UK London, England
Job description
We are Multiverse, a tech scaleup with a social mission. We’re creating a diverse group of future leaders by building an outstanding alternative to university and corporate training, through the power of professional apprenticeships.
We’re one of the fastest-growing businesses in Europe and rapidly expanding in North America, working with over 500 clients including Facebook, KPMG, Morgan Stanley and the NHS. In June 2022, we broke the EdTech funding record (again!) by announcing our $220m Series D, making Multiverse the UK’s first ever EdTech unicorn.
Join us on our journey to democratising access to the best careers and learning opportunities.
The opportunity
There is an exciting opportunity for an enthusiastic privacy and data protection professional to join our new Privacy team, working closely with Legal, InfoSec, Business Operations, Product and more. On a daily basis you will be helping to develop and roll out the Multiverse Privacy Framework and promote a positive privacy culture across the business.
In return, you’ll get the chance to take your career to the next step by protecting one of the fastest-growing start-ups in Europe. If you have good knowledge of privacy, data protection and information security, with a desire to work in a fast-growth and challenging environment, we’d like to meet you!
Your key responsibilities
Reporting in directly to the DPO, you will help to build a robust privacy culture throughout the organisation, roll-out a global privacy framework, uplift and create governance structures, and help to ensure compliance with GDPR, CCPA, CPRA, PECR and more.
You will be working towards:
Helping to shape and implement the MV Global Privacy Framework across our UK and US operations
Owning and delivering projects to ensure compliance with relevant privacy legislation, particularly UK GDPR and US state privacy laws
Advising staff on ad hoc requests regarding privacy & data protection
Contributing to multi-disciplinary projects across the business as a subject matter expert, helping to shape the delivery of our future products
Working with our clients to evidence our compliance and ensure their requirements are met
Creating and maintaining accurate records as required by applicable legislation - e.g. Records of Processing Activities (ROPAs), Data Protection Impact Assessments (DPIAs)
Responding to Data Subject Access Requests (DSARs) and Security Incidents
Working with the DPO, InfoSec, Legal, BizOps to develop our forward security posture
Developing and delivering relevant training across the business
Drafting and updating internal policies and procedures
Assessing our vendors to ensure ongoing compliance
Working with change management functions to assess new tools and technologies ahead of adoption
Identify and implement tools and automation for developing our technical data protection controls.
Other privacy and data protection related duties as required
Assisting with the firm’s ad hoc projects
Skills and attributes for success
Enjoying working in a fast and high-pressure environment
Energised by complex problems across a wide range of topics that may be unfamiliar
Understanding of GDPR and enthusiasm about privacy and data protection
Passion for delivering practical solutions that meet the needs of the business
Clear and concise communication skills
Great collaborator who can build relationships across all functions in the organisation
Ability to provide clear and practical advice and support with a high degree of professionalism
Ability to plan, organise and prioritise tasks and projects
Ability to remain calm, controlled and resilient in a fast and pressurised environment
CIPP/E, CIPM qualifications favoured but not essential
Benefits
Time off - 27 days holiday, plus 6 additional days off: 1 life event day, 2 volunteer days and 4 company-wide wellbeing days
Health & wellbeing - private medical Insurance with Bupa, a medical cashback scheme, life insurance, and access to Spill - all in one mental health support
Hybrid & remote working - weekly or monthly visits to the London office
Equity - every Multiverse employee has ownership in the business through equity options
Team fun - weekly socials and regular offsite events
Our commitment to Diversity, Equity and Inclusion:
We’re an equal opportunities employer. And proud of it. Every applicant and employee is afforded the same opportunities regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. This will never change.
Safeguarding:
All posts in Multiverse involve some degree of responsibility for safeguarding. Successful applicants are required to complete a Disclosure Form from the Disclosure and Barring Service ("DBS") for the position. Failure to declare any convictions (that are not subject to DBS filtering) may disqualify a candidate for appointment or result in summary dismissal if the discrepancy comes to light subsequently.
