Data Protection Manager

Welcome to awaze, europe's largest holiday vacation rentals group.

A family of iconic travel brands including Cottages.com, Hoseasons & Novasol. With over 1.5 million bookings each year, we're proud to offer our guests a choice of over 100,000 properties in our portfolio, in 25 countries across Europe.

🏘️ Why join us?

Since 2021, we’ve built up a great team responsible for solving the largest technology replatforming project ever in the travel industry. As we roll out our new core platform in 2024, it's a genuinely exciting time to join us as we continue to innovate, evolve and grow our platforms with one simple vision and aim: "to delight our owners and guests."

Do you want to join in the fun of transforming the travel industry?

🏘️ Position: Data Protection Manager

Woking closely with our new Head of Information Security, we're looking for an experienced Data Protection specialist, with a background in managing data protection for a consumer brand.

Day-to-day your role will include:

• Maintaining an expert knowledge of data protection and privacy law, regulation, practices and related guidance at an EU and UK level.
• Reviewing, developing and overseeing data protection, retention & privacy related policies and procedures.
• Overseeing and delivering training and raising awareness internally on data protection and privacy matters.
• Monitoring compliance with data protection and privacy law, regulation and practices and internal data protection and privacy related policies, including conducting regular internal compliance checks.
• Advising on and assisting the business with Data Protection Impact Assessments, including monitoring their performance.
• Managing the record of processing and ensuring it is kept up to date.
• Ensuring regular briefings for the business on data protection and privacy matters and maintaining accurate and up-to-date records demonstrating compliance with EU and UK data protection and privacy law.
• Preparing draft reports, handling internal and external queries in relation to data protection incidents and investigations involving supervisory authorities e.g., ICO
• Managing the responses to data subject requests and data protection and privacy related queries from data subjects.
• Reviewing key business changes to understand their potential data protection impacts, to ensure the business is aware of those impacts, and providing advice and input on new data processing initiatives.
• Developing, implementing and maintaining education and awareness programs to improve organisational resilience with respect to privacy risks arising from threats like phishing
• Reviewing emerging technologies and potential process improvements to improve data protection capabilities.
• Working closely with the wider Cyber and information security teams to ensure privacy and data security risks are managed as part of the security and infosec roadmap.
• Support the privacy aspects of key processes including supplier risk assessments.
• Provide advice and support as part of the security incident response team during the invocation of the incident response plan.

🏘️ Skills and experience you’ll need to succeed:

Here at awaze, it’s safe to say that no two days are the same in our business, so you’ll definitely need to be adaptable. We looking for someone who is technologically adept, who loves & understands data protection and possesses excellent communication skills.

You'll also offer:

• Expert knowledge of data protection law and practices. A Data Protection qualification (e.g. IAPP CIPP/E) is desirable.
• Technologically adept, you need to be able to understand key tools and technologies aligned to data privacy and translate technical, process and other risks and how they impact data privacy risks to be able to deliver tailored advice and guidance.
• A track record in Data protection roles with demonstrable success in developing and leading data protection programmes, ideally including in a consumer facing business.
• Confident presentation skills with the ability to promote challenging points-of-view and to engage others whose contribution is required for a successful data protection programme and to train personnel on data protection.
• A proactive approach to train personnel across the business on data protection.
• A pragmatic view, able to identify a balance between the management of risks and the capability for the business to continue to operate.
• Excellent time and project management skills and ability to multi-task and prioritize work
• Attention to detail and problem-solving skills
• Excellent written and verbal communication skills
• A creative mind with an ability to suggest improvements

🏘️ What will we offer you?

Upon joining, we’ll set out your journey with us with a personalised competency framework and we’ll give you the freedom to inform the best way of working to get the job done and help us shape the culture of our international teams.

We’ll also reward you with:

• Annual Bonus Scheme
• 25 days holidays (plus the option to buy up to 5 additional days)
• Holiday Discounts (18% to 20% discount across all AWAZE brands)
• Pension contribution scheme
• Private healthcare
• 35 hour working week
• Hybrid working
• Meeting free lunch policy

🏘️Get in touch, we'd love to chat:

If you're interested in transforming the industry and reinventing how our technology powers everyday amazing holidays, please send your profile to jody.marks@awaze.com and let's chat today.