Data Protection Officer chez Flexigroup

We Dream. We Design. We Deliver.

Join hummgroup, one of Australasia’s most successful and enduring non-bank financial services institutions. We specialise in fast, easy finance with a market-leading range of business asset finance, credit cards and point of sale payment plan solutions designed around the core needs of today’s businesses and retail consumers. Come join our team and be a part of our next chapter of innovation and growth.

What's so exciting about this role?

Reporting directly to the CEO for the Group’s UK, Irish and Canadian operations, the Data Protection Officer (DPO) is responsible for designing, implementing and overseeing the Group’s data protection framework to ensure compliance with GDPR/UKGDPR and industry best practice. This role involves leading data protection initiatives across jurisdictions, proactively addressing emerging privacy risks and fostering a culture of data protection awareness and accountability throughout the Group. 

The DPO will be a key member of the executive leadership team, collaborating closely with regulators and stakeholders across jurisdictions and business units to align data protection with the Group’s strategic objectives and evolving regulatory landscape.

The role is ideal for an experienced data protection leader with a deep understanding of GDPR/UKGDPR and its application within a global financial services business and the vision to build a robust, cross jurisdictional data protection framework.

What Does An Average Day Look Like?

No day is average at humm but here’s an idea of what you can expect to do in this role:

• Develop, implement and oversee the Group’s data protection framework, policies and processes to ensure compliance with GDPR/UKGDPR and industry best practice;
• Establish data protection governance objectives and key risk indicators that align with the Group’s risk appetite and compliance requirements and report to UK and Irish Boards on risks, threats and mitigation strategies;
• Lead and oversee cross border transfer strategies, including internal data sharing agreements and standard contractual clauses;
• Implement systems and processes to monitor, identify and mitigate data protection risks across business units and jurisdictions;
• Own and maintain Records of Processing Activities with responsibility for co-ordinating review cycles and collaborating with internal stakeholders to ensure records are accurate and up to date;
• Deal with Subject Access Requests in Ireland and the UK, keep Privacy Notices updated and conduct Data Protection Impact Assessments where required;
• Liaise with data protection regulators, auditors and external stakeholders with regard to all data protection matters;
• Stay informed on developments in data protection law, regulatory developments and industry trends and advise the executive team on their impact;
• Design and implement GDPR/UKGDPR training programmes to enhance awareness and accountability at all levels of the Group;
• Provide independent oversight, challenge and advisory support to business units across multiple jurisdictions when processing data subject to GDPR/UKGDPR;
• Collaborate with regional Privacy Officers to provide support and training to enhance data protection and effectively manage risks;
• Provide strategic oversight on Group wide projects to ensure consistent data management practices.

Who will thrive in this role?

We’re looking for someone who brings:

• Extensive experience in data protection, privacy and regulatory compliance within the financial services industry in a senior, global data protection role;
• Deep understanding of GDPR and UKGDPR and their application in financial services;
• Proven track record of developing, implementing and managing data protection programmes in a multi-jurisdictional environment;
• Experience in collaborating with cross functional teams to implement data governance and privacy risk management across global operations.
• Expertise in designing, implementing and overseeing data protection frameworks, policies and risk controls in a regulated financial background;
• Strong background in data mapping, records management, DPIA’s and third party risk management;
• Experience managing data breaches, incident response planning and regulatory reporting obligations;
• Ability to collaborate with cross functional teams, including data security, IT, legal and compliance across multiple jurisdictions.

Working at hummgroup

We embrace flexible working arrangements, ensuring a genuine work-life balance and a fun, vibrant inclusive culture that embraces diverse perspectives and values the unique contributions of each of our team through our behaviours Leadership - Accountability - Collaboration - Commerciality. 

We invite candidates of all gender expressions, ethnicities, ages, and other culturally diverse groups to apply.  We are committed to making reasonable adjustments to provide a positive, barrier-free recruitment process and welcoming and supportive environment where all our people can thrive.

If this sounds like the opportunity, you have been looking for then apply today!