Data Privacy Framework & Oversight Analyst

Role Title: Data Privacy Framework & Oversight Analyst

Division: Operational Risk and Data Protection

Location: Liverpool

Contract: Permanent

Working pattern: Hybrid

About the Role

The Privacy Framework and Oversight Analyst plays a key role in supporting the organisation’s data protection programme. This role is responsible for maintaining and enhancing the privacy framework, ensuring delivery of the operational BAU processes and oversight of privacy risks, and supporting compliance with data protection laws and internal data policies. The role would require providing oversight, challenge and guidance for all data-related risks across the organisation. The role involves collaboration with the Group DPO and key stakeholders across the business to mature data protection compliance and foster a culture of accountability and transparency.

What you’ll be responsible for

• Support the development, implementation, and continuous improvement of the organisation’s privacy framework, policies, and procedures.
• Provide oversight and advice to assist the development and implementation of all key data policies including policies on data retention, classification, quality, and AI.
• Support the operational delivery of the second line data protection programme, including DSAR triage, breach logging, and the core components of the data protection programme.
• Maintain accurate registers (DPIA, SAR, Breach, ROPA, Accountability tracker) and ensure timely updates.
• Support second line oversight / monitoring of  data protection, data/records governance, including retention, deletion, data lifecycle controls, Data classification and AI.
• Assist with the maintenance of the Record of Processing Activities (ROPA) and linked records of lawful basis, retention, and risks.
• Provide advice to the business and where required assist with providing targeted training, including drafting training materials and communications.
• Contribute to the development and improvement of workflows, registers, and second line systems and tooling.
• Help maintain procedure documents to support operational processes.
• Required to engage and manage stakeholders around the business in relation to data related topics.
• Support assurance activities including monitoring, evidence gathering, and thematic reviews.
• Assist in producing MI reporting to provide visibility over privacy operations and compliance activity.
• Liaise with Data Privacy Managers and business support teams to ensure seamless escalation and collaboration.

About you

If you meet some of these criteria and are excited about the role, we encourage you to apply

• Good level of  knowledge of UK GDPR and Data Protection Act 2018.
• Practical experience of working in a data type role or data protection function, specifically handling data subject rights requests and breaches, and the development and implementation of policies and processes as part of the data protection risk framework.
• Good technical, analytical and problem solving skills, with strong attention to detail.
• Good verbal and written communication skills including formal report writing.
• Good O365 skills and understanding of risk software.
• Good stakeholder management and engagement skills.
• Experience in privacy teams, data protection, or records management
• Experience in financial services or regulated sectors preferred