Job Purpose :
Assist the Data Protection Manager in providing accurate, appropriate, timely and pragmatic data protection advice, striking a balance between legal / compliance requirements and the wider interests of the business
Key Responsibilities :
Conduct comprehensive Data Protection Impact Assessments
Provide input to internal policies and procedures
Assist with writing reports for the Data Protection Committee
Assist with maintaining the Fidentia data protection compliance database
Contribute to the maintenance of the Register of Processing Activities
Undertake research into the requirements for British Standard for Data Protection (BS10012)
Assist the Data Protection Manager with the provision of data protection training across the Group
Assistance with use of Varonis to enhance data protection compliance across the organisation
Undertake regular meetings with data owners
Draft data protection communications for the business
Assist in maintaining the data protection areas of the intranet
Research international data protection requirements
Provide support in the preparation of responses to requests from data subjects to exercise their rights, including but not limited to Data Subject Access Requests
Assist the Data Protection Manager in maintaining and developing the data protection framework across the Group, including identification and incorporation of local requirements
Update the logs of Data Subject Access Requests, erasure requests, data breaches and near-misses
The provision of ad hoc data protection support as required
Skills and Experience Specification :
A minimum of 3 years data protection and privacy experience in a fast-paced, professional environment
CIPP / E, CIPM, ISEB or other privacy certification
Good knowledge of GDPR and European data protection requirements
Proactive and able to work independently
Excellent communication and people skills
Ability to work under pressure and to strict timescales imposed by legislation and business need
Good analytical skills, including the ability to assess risk and impact from a privacy and data protection perspective
Act as part of a center of expertise, providing timely responses to the business on data protection queries.
Undertaking of research to identify those territories where the impact of data protection laws may impact the company’s ability to write business.
The required skillset includes attention to detail, analytical ability, and the ability to apply data protection requirements (many of which are new or require interpretation) to complex problems.
The successful candidate will have excellent communication skills, possess the ability and confidence to speak to people at all levels of the business, and be able to obtain buy-in on data protection across the business.
They will need to provide timely responses in order to meet expectations regarding service standards.
The work will involve : Replying to business queries (10%); Maintenance of varied systems, including Fidentia (30%); Writing and research (30%), Undertaking Data Protection Impact Assessments (20%).
Whoever fills this position will be sitting within the Data Protection Team, within Compliance. This is a Group function covering business in the UK, EU, and US.
The team was relatively recently established, and reports into the Board via Data Protection Committees.
The Tokio Marine HCC Group of Companies offers a competitive salary and employee benefit package. We are a successful, dynamic organization experiencing rapid growth and are seeking energetic and confident individuals to join our team of professionals.
The Tokio Marine HCC Group of companies is an equal opportunity employer. Please visit for more information about our companies.