„Najbardziej cenię w swojej pracy: możliwość rozwoju, zdobywania nowych doświadczeń, a przede wszystkim współpracę w gronie wspaniałych, wartościowych ludzi.”
Ania, Dział Operacji
JOINS US!
Creamfinance Poland Sp. z o.o. is an innovative company in the field of consumer financial services, which is part of the international Creamfinance Group.
We are a modern fintech. With us, you can develop your skills and passion and build your career (path) in the company's structures.
YOU WILL BE RESPONSIBLE FOR:
Acting as a key contact for the EU data privacy and data protection regulation across the business globally (group/staff/supervisors/third parties).
Supporting the the company and its management team in monitoring data processing activities on a risk-based approach, identifying areas of weakness and recommending remedial action.
Managing and preparing all group data protection documentation.
Assisting to the legal department in preparing data sharing/processing agreements and privacy impact assessments.
Providing advice and guidance to the IT, risk and marketing departments on a wide range of data protection related matters.
Act as DPO for Polish entities and manage other DPOs within the Group.
Supporting and managing data protection incidents including data breaches, complaints and data subject access requests in a timely and appropriate manger in line with the EU data privacy and data protection regulation and internal policies.
Carrying out internal audits/assessments and monitoring compliance with the EU data privacy and data protection regulation, internal data protection policies.
Raising awareness of data protection issues, training staff and conducting internal audits.
Promoting a privacy culture across the company through development and maintenance of training programs and face to face enhanced training when required.
BENEFITS:
YOUR ASSETS:
A certified Data Protection Practitioner (DPO) with minimum 4-5 years’ experience, ideally with an internet or technology focus, or working with a renowned consultancy or law firm.
Good knowledge of the EU and Polish data privacy and data protection regulation, and other major privacy frameworks, evolving legislation and the CJEU and ECtHR case law.
Sound understanding of and familiarity with information technology programming and infrastructure, information security practices and audits.
Experience in providing support to a group of companies located in various jurisdictions (within the EU and the USA) would be an asset.
Experience in auditing, risk management, developing policies and compliance training.
Fluent level in business/legal English both written and spoken.
Ability to work in a dynamic and fast-paced environment.
High level of precision and accuracy as well as strong analytical skills and problem-solving skills.
High sense of responsibility and accountability, strong communication skills and time management skills.
Nice to have (not required): Degree in Law and financial services experience.