Data Protection Officer (DPO)
Affinity apps are a multiple-award-winning creative suite of professional applications, setting the new industry standard in the world of design. They have been adopted by millions of users worldwide and whilst we’re proud of what we’ve achieved so far, we have ambitious plans for growth.
This brings a clear need for an experienced and dedicated DPO to join our team to help manage the security of data.
In this newly created role, The DPO will be responsible for advising on information management and auditing all existing data protection practices to identify any areas of vulnerability and design a robust plan for data security - from the processing and storage of customer and employee data, to ensuring the protection of all Serif’s intellectual property. The DPO will ensure Serif is compliant with all relevant legislation.
This role has a high degree of autonomy so requires a proactive, compliance driven and practical thinker who can direct and plan their own workload.
- Conduct an initial review of current data related policies, processes, physical and technical storage practices and advise on improvement measures to maintain the security of all data
- Implement a data protection management plan to ensure ongoing due diligence for the business and its customers
- Ensure full compliance with the requirements under the Data Protection Act (2018) and UK General Data Protection Regulation (GDPR) and all relevant codes of practice
- Be the primary point of contact, both internally and externally, for advice on all data protection laws
- In the event of an incident act as lead contact for all ICO data protection queries and investigations
- Promote the importance of data protection and compliance internally across all departments, through both training and education, and develop initiatives to help embed engagement and participation of all employees
- Work alongside the Web Team to assess risks associated with each system update and proactively ensure the security of data on all cloud services
- Alongside the IT team implement processes to prevent any potential cybercrime threats
- Maintain records for all data processing activities including Data Protection Impact Assessments (DPIAs) and Transfer Risk Assessments (TRAs)
- Arrange regular stress tests of the network and information systems to assess areas of potential risk and produce improvement plans where necessary
- Respond to all data subject access requests
- Expert knowledge and understanding of compliance with UK and EU Data Protection laws and practices
- Professional GDPR/Data Protection Qualifications, ideally CIPT, CIPP/E, CIPM, or equivalent
- Currently working in a DPO role
- Excellent understanding of digital data related challenges
- Pragmatic approach with the ability to communicate risks and provide solutions
- Comfortable proposing appropriate actions/solutions to ensure compliance and ability to influence colleagues
- Background in technology sector preferred
We are proud of what we have achieved. We set the highest of standards for our products and ourselves and there’s a host of great benefits and rewards available in return.
The good stuff
- Discretionary Company-wide quarterly bonus scheme — up to 8% basic salary per year
- Health Insurance
- Company Pension Scheme
- 27 days holiday + bank holidays
- Life Insurance
- Car parking and monthly car wash
- Showers for cyclists & lunchtime runners
- Breakout spaces, arcades and pool table
- Flexible hours
- Relocation package
The Software Centre
Wilford Industrial Estate
How to apply
Please email firstname.lastname@example.org with the following:
- The role you are applying for (please include in subject line)
- Your full name and phone number
- Your CV and pitch for why you’re the right person for the job
- Note: Applicants must be eligible to work in the UK. This role is based at our Nottingham HQ and not available to remote workers. However we can help with relocation costs for the right candidate!