Skip to main content
Job ID Location Work Location
2201F3 Reading Dual Location - Home & Reading Office
Job Type Contract Type Hours Per Week
Professional Full-time 37.5
Shift Pattern Closing Date
Standard N/A

Where possible we’re committed to flexible working and supporting our employees to have the right work life balance. Do however note, if you choose to apply for a different work location you will not have any eligibility for relocation support or travel allowances.

As part of the Data Protection team, the Data Protection Associate will provide support to facilitate Three’s compliance framework, including policies, processes, procedures and controls, in place to operate in line with its legal and regulatory obligations in relation to data protection.

Our strategy, and the evolving external landscape we operate in, determine the legal and regulatory environment that we are exposed to. That environment is broader and more complex than it used to be because of both internal and external factors; so, it’s important we have a structured approach to ensuring we comply with everything we should and that we can demonstrate how we comply.

Everyone in Three, including our partners, has an important role to play in managing risk and compliance. We also need some of our people to build expertise to help keep the business operating in compliance with laws and regulations; that’s where you come in.

Please note, this contract will run up until Dec 2022

In this role you’ll do a variety of interesting and important things that are essential to Three operating in a way that enables it to be compliant with relevant data protection laws and regulations.

Some of the key tasks will require you to:
• Assist the DPO and Deputy DPO in the development of appropriate policies and help influence key stakeholders to buy in to the policies, identifying and addressing gaps in compliance.
• Conduct GDPR compliance reviews with the DPO / Deputy DPO.
• Oversee and manage the public facing customer communication inbox, tracking activity, escalating issues and overseeing the successful completion of associated tasks.
• Oversee the subject access request process and individual rights, supporting government liaison team in the effective and ongoing delivery of individuals rights.
• Support the DPO with the management of data breach prevention in the event of non-compliance. Ensure breaches are adequately controlled, escalated and addressed.
• Manage and oversee recording and mitigating any identified risk/non-compliance.
• Collaborate with the wider Risk and Compliance Team supporting ongoing team activity and developing team knowledge on GDPR.
• Maintain a DP knowledge base on the intranet.
• Liaise with customers where necessary or required.

• Excellent organisational skills.
• Strong communication and interpersonal skills are essential; a people person skilled at building and maintaining relationships both internally and externally.
• Strong analytical and guidance/report writing skills – ability to perform detailed analysis and write clear concise reports and advisory briefs.
• Proven ability to implement change and manage processes.
• GDPR experience / knowledge would be advantageous

TTC Logo

Three are a proud signatory of the Tech Talent Charter (TTC), working across industries to drive greater inclusion and diversity in technology roles.

Can’t find the job you’re looking for?