Job Description
this role is open to remote working within the UK. Successful candidates will be required to travel to their closest UNiDAYS campus (London or Nottingham) on occasion.
The role in a nutshell
At UNiDAYS, we move quickly and thoughtfully to address a variety of legal issues that come with being disruptors in the market. Our team is made of exceptionally bright professionals who work collaboratively and seek to deliver results and solve difficult problems.
As our Privacy Counsel based in the UK, you will report to our Legal Director, DPO and work with multiple stakeholders across the business to identify and drive the appropriate strategies, capabilities, procedures and communications to enable our organisation to meet its regulatory obligations around the globe and fulfil our own unique commitments of trust and transparency to our members and partners.
Day to day responsibilities
Lead on implementation of UNiDAYS Global compliance programme, including analyse and research of various laws and regulations directly applicable to UNiDAYS 115 markets and support Legal Director, DPO with next steps;
Review, design and implement the data compliance framework for UNiDAYS group, including without limitation: Data Categorization, Classification and Retention Policy; Access Control Policy; Data Security Incident; Response Policy; Data Privacy Handbook and Employees Privacy Policy and Notice; Subject Rights Policy; Data Cross-Border Transfer Policy; and Personal information Protection Impact Assessment Policy;
Review and update, as appropriate, UNIDAYS website Privacy Policy, Cookie Policy, and Cross Border Consent (worldwide);
Provide legal support and guidance in relation to data residency, security certification, use of permitted encryption and technology worldwide;
Conduct the necessary cross-border transfer impact assessments, and data impact assessments, as required by local laws;.
Prepare and support the submission of the partners due diligence questionnaire updating any gaps in compliance as may be necessary;
Populate and maintain risk register, as appropriate;
Design, develop and deliver data privacy and security training programmes;
Work with Legal, Information Security, Engineering, Data & Insights, Product, Identity and Commercial Teams, and other cross-functional teams to develop and implement global privacy standards;
Partner with all key business areas to ensure data privacy risks are considered at the outset of new initiatives (Privacy by Design), leading projects from a data privacy aspect;
Administrator on OneTrust to support and oversee the preparation of Records of Processing Activities (ROPA), Data Protection Impact Assessments (DPIA), Vendors Assessments, as as required by the Global Privacy Programme;
Partner with all key stakeholders to ensure data privacy issues are considered at the outset of new projects, products and initiatives and then correctly attended to in delivery.
Lead on the fulfilment of Data Subject Rights Requests and support the global workstream, as may be required from time to time. Conduct investigation in relation to data privacy complaints and breaches, propose resolution, escalate and report as appropriate;
Review third party contracts, data sharing and cross border transfer agreements;
Support the development and implementation of operational improvements to improve the effectiveness and efficiency of the company's global privacy program;
Provide privacy support to HR, Finance, Legal, Procurement and other functions as may be required in order to ensure regulatory compliance
What we need from you
Solicitor 4+PQE, with experience as DP counsel
Experience working on practical data privacy compliance issues in a multinational organisation.
CIPP/AIPP Certification preferred
Robust working knowledge of OneTrust
Knowledge of information technology, marketing, engineering and data management systems preferred
Able to analyse Privacy Risks and Controls and relate them back to underlying laws and regulations
Able to use a range of communication and influencing techniques to successfully negotiate, collaborate or effect change with different stakeholders at all levels within the business, e.g. business, legal, IT, security.
Self-starter confident working in a distributed environment.
An enthusiastic, positive and proactive mindset who is a team player willing to support a team in achieving its goals and objectives.
Experience with establishing and managing a corporate global privacy program in accordance with applicable laws and regulations, as well as identifying and driving validation and remediation actions (specific experience in privacy or security compliance preferred)
Well organised, detail-oriented, and accountable with a high degree of professionalism, diplomacy, discretion and judgement.
Exceptional written and verbal communication skills - including an eagle-eye for detail.
Highly motivated, self-starter and quick learner with demonstrated ability to deliver quality results within time constraints. Must be able to handle multiple projects simultaneously under tight timelines.
Ability to work in a high-volume, fast-paced, and customer-facing environment.
Roll up your sleeves, can-do attitude to tackle projects large and service-oriented approach to collaborating across the organisation.
Perks
We've accomplished a lot since we started in 2011, but in many ways, this is just the beginning. This is the chance for you to get in on ground zero. An opportunity to make a difference within the business with global reach. We are the world's largest Student Affinity Network, with over 22 million verified members in 115 markets including the US, UK, Germany, India, Canada and Australia. We work with 800 of the world's biggest brands globally, taking their products and services into the hearts and minds of tomorrow's professionals, delivering engagement, building affinity and sales. You'll also be working for a Great Place to Work CertifiedTM company who have been recognised on the UK's Best WorkplacesTM for Wellbeing and UK's Best Workplaces for Women 2022 list. To find out more about our workplace initiatives, see our UK exclusive case study with Great Place to Work and be sure to visit our profile for more information.
We offer a fast paced, fun & social working environment where you can truly make an impact. We believe that work should enhance and complement your life which is why we leave it up to you to decide where you work. You can choose to work from your assigned campus (either Nottingham or London) or from home, whatever works best for your individual needs. Your manager may request you attend team meet ups at your campus but other than that it is up to you! We work hard at UNiDAYS, but we also believe in fair compensation for hard work. That's why we're pleased to offer all employees full access to our comprehensive benefits package.
Our perks include:
25 days holiday per year increasing with length of service, plus flexible bank holidays
Competitive salaries
4pm finishes every Friday
Company bonus scheme
Company pension scheme
Company share option scheme
Private health insurance (Vitality)
Income protection policy
Life assurance policy
Employee Assistance Program
Enhanced parental leave pay
Core hours with flexibility around how/when you manage your time
Regular team building activities
The latest tech and hardware will be supplied from day one
Good Vibes Program: we know we've all had to adapt to new ways of working and UNiDAYS has always taken pride in the community we've created in the office but we're just as committed to creating an innovative approach to fostering connections and improving engagement outside of the office! We want to boost your remote working experience so think virtual parties, pottery classes, wellness classes and guest speakers just to name a few!
Support for home working for all new team members. We will help assess your home set up and you can expense £150 towards any additional furniture you may need to be safe and comfortable when working from home
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status or disability status.