Skip to main content
Job ID Location Work Location
200172 Maidenhead Maidenhead Office (Star House)
Job Type Contract Type Hours Per Week
Professional Full-time
Shift Pattern Closing Date
Standard working week N/A

Where possible we’re committed to flexible working and supporting our employees to have the right work life balance. Do however note, if you choose to apply for a different work location you will not have any eligibility for relocation support or travel allowances.

We are looking for an individual who has a genuine love of data protection, can think innovatively and provide practical and commercial advice in relation to data protection. Reporting to the Director of Risk, Compliance and Data Privacy, the Data Protection Officer will provide specialist and practical guidance in relation to data protection laws and regulations to facilitate Three’s compliance with the requirements and drive forward a culture where data protection is at the heart of our business. 

In this role you’ll do a variety of interesting and important things that are essential to Three operating in a way that enables it to be compliant with relevant data protection laws and regulations.

  • Inform and advise 3UK and our employees about our obligations to comply with the GDPR and other data protection laws
  • Monitor compliance with the GDPR and other data protection laws, and with our data protection policies, including managing internal data protection activities; raising awareness of data protection issues, training staff and conducting compliance reviews
  • Manage data privacy breaches or near misses, support the identification of the root cause, mitigations and monitor implementation to prevent recurrence
  • Advice on and monitor data protection impact assessments
  • Cooperate with the ICO and be the first point of contact for the ICO and for individuals whose data is processed (employees, customers etc) or those who process data on our behalf
  • Understand the key risks associated with the processing we undertake, highlight these to the Director and work closely with the risk team to monitor these risks
  • Identify and evaluate our data processing activities


  • Excellent understanding and knowledge of UK data protection legislation & regulatory regime, with a proven history of working in the field of data protection (including e.g. ISEB/CIPPE qualification)
  • Demonstrable experience in the application and implementation of Privacy by Design and Default, conducting Data Privacy Impact Assessments and independent assessment of data breaches
  • Experience as DPO in a B2C environment (ideally Telecoms) with large customer data sets, including marketing
  • Experience working in a fast paced environment and able to prioritise activities
  • Strong communication and interpersonal skills are essential; a people person skilled at building and maintaining relationships both internally and externally as well as managing key stakeholders
  • Strong writing skills – ability to perform detailed analysis and write clear concise reports and advisory briefs
  • Proven ability to implement change and manage processes
  • Previous telco experience in a similar role
  • Law degree and experience as a counsel

TTC Logo

Three are a proud signatory of the Tech Talent Charter (TTC), working across industries to drive greater inclusion and diversity in technology roles.

Can’t find the job you’re looking for?