Data Protection Correspondent (DPC) - Italy - Porto or Lisbon

About The JobBNPP Group Personal Data Protection framework, defined to respond to the new General Regulation on Data Protection - GDPR coming into effect on 25 May 2018, relies on the accountability of teams within BNPP entities and territories in their processing of Personal Data (customer, employees, UBOs, representatives of corporate, vendors, etc.)The 1st Line of Defence (Business, IT and CDO) has the responsibility to embed data protection regulations and Group policies and guidelines in the internal organization and processes within its perimeter (e.g. privacy by design, PIA, security measures, etc.)DPC is positioned in the 2nd line of Defense (within RISK function) and is responsible for the scope outlined under his/her responsibility. The DPC must assist the relevant Data protection Officer (DPO) in supervising the compliance with data protection regulations and Group policies and guidelines. Its role is to ensure second level controls by providing the supervision and assistance required to the 1st Line of Defense.To ensure consistency with the Group's management structure, a DPC is positioned at Entity or Territory level. He/she will report to Data Protection Officer (DPO) of the relevant Business Line or TerritoryYour Main Activities AreThe Key Responsibilities Of a Data Protection Correspondent AreCommunication with internal (e.g. employees) and external stakeholders.Assist the Territory DPO on exchanges with the authorities in charge of the protection of personal data, in coordination with the Business Line DPO.Assist the Territory DPO in the supervision and monitoring of implementation of its main responsibilities,, including as follows:Review and advise on implementation of Group policies and guidelines on Personal Data Protection and monitor consistency in their implementation (Consent collection process, cross border transfers, management of retention or personal data obsolescence)Review and advise on implementation of Privacy by design principles from the design stage and during the lifecycle of all projects, products, services, activities, processes and systemsProvide advice on Privacy Impact Assessment (PIA), e.g. whether or not to carry out a PIA, what methodology to follow, what safeguards to apply to mitigate risks to the rights and interests of individuals) and monitor that PIAs are performed correctly Monitor the local implementation of Group security strategy in line with Personal Data Protection regulatory requirements.Contribute to risk evaluation in case a personal data breach occurred to ensure in a timely mannerParticipate in local Data Protection Committees when requested by the DPO.Support the relevant DPO to oversee the Records of Processing Activities (“ROPA”)Supervise and escalate cases of non-compliance with regulations, to data protection authorities as well as local and central Senior Management.Where required, assist the DPO with regards to local language, law and practices.Assist in the construction and implementation of the awareness program and contribute to the promotion of a culture of protection of personal data within its scope of responsibility.Contribute to the promotion of a data protection culture within his/her scope of responsibilityAssist the DPO with the second level of controls and independent data protection testing to monitor compliance with regulations and our internal rules:Carry out second-level controls on processes related to the protection of personal data as part of a risk-based approach.Evaluate the effectiveness of the controls relating to the protection of personal data carried out by the 1st line of defense.Confidentiality obligation The DPC will be bound by secrecy or confidentiality concerning the performance of his/her or her tasks, in accordance with applicable laws.Profile And Skills To SuccessBackground6 + years’ experience with significant knowledge and experience in Data Protection/Privacy and banking sectorUnderstanding of data processing operations, including business applications and data useExperience in transversal management and workingExperience in interacting with regulators (will be a plus)Experience of managing compliance programs on regulatory requirementsStrong knowledge and interest in Information Technology, digital and new technologies and understanding of information security controls and principlesBusiness SkillsFluent in English (mandatory), Italian professional proficiency preferredData ProtectionRisk knowledge and awarenessRisk anticipationData quality & SecurityRegulatoryBusiness analyticsNew Technologies and Digital Law [IT/IP]IT risk and cyber security awarenessBehavioral SkillsExcellent writing and communication skills – allowing him/her to act as a communicator across the bank, on behalf of the DPOAttention to detail/rigor Ability to lead, engage and work transversally on behalf of the DPOIndependency, objectivity and integrity.Creativity & Innovation and Problem SolvingClient Focus high-level of commitment and self-motivation, combined with enthusiasmTransversal SkillsAnalytical AbilityAbility to develop and leverage networksAbility to develop and adapt processAbility to conduct a negotiationAbility to understand, explain and support change ConductBe a role model, supporting and fostering a culture of good conductDemonstrate proactivity, transparency and accountability for identifying and managing conduct risksConsider the implications of your actions on colleagues, partners and clients before making decisionsTake responsibility for your team’s conduct and conduct risks.Certification QualificationsQualification on Data Privacy is highly appreciated. He/she will be required to enrich his/her competencies with additional professional qualifications relevant to Data Protection, such as:IAPP Information Privacy Professional/Europe (CIPP/E) or Certified Information Privacy Professional/ IT (CIPP/IT)Certified Information Privacy Manager (CIPM)Practitioner Certificate in Data Protection (PC.dp)Fellow of Information Privacy (FIP)ISEB Data Protectionor equivalent data privacy qualificationWhy joining BNP Paribas? Leading banking institutionBNP Paribas is the European Union’s leading bank, and key player in international banking. It operates in 63 countries and has nearly 183.000 employees, including more than 146.000 in Europe. Our presence in PortugalIn Portugal since 1985, BNP Paribas today has more than 8.700 employees, distributed across the Group's 10 business entities established in the country. Its presence also extends to 11 excellence centres providing value-added services to various countries where the BNP Paribas Group also operates. International reach Thanks To Its International Presence And Regular And Close Collaboration Among Its Different Entities, BNP Paribas Has The Resources To Support All Clients With Financing, Investment, Savings And Protection Solutions That Help Make Their Projects a Success. BNP Paribas Holds Key Positions In Its Three Core Operating DivisionsRetail Banking, a division that brings together all of the Group’s retail activities and specialised business lines; Investment & Protection Services that include specialised businesses offering a wide range of savings, investment and protection services; Corporate & Institutional Banking division that offers tailored financial solutions for corporate and institutional clients. Diversity and Inclusion commitment BNP Paribas is an equal opportunity employer and proud to provide equal employment opportunity to all job seekers. We are actively committed to ensuring that no individual is discriminated against on the grounds of age, disability, gender reassignment, marriage or civil partnership status, pregnancy and maternity/paternity, race, religion or belief, sex or sexual orientation. Equity and diversity are at the core of our recruitment policy because we believe that they foster creativity and efficiency, which in turn increase performance and productivity. We strive to reflect the society we live in, while keeping with the image of our clients. Commitment towards work/life balanceAt BNP Paribas we care about our employees wellbeing and promote a culture of good integration between work and rest. We believe our employees have rich personal lives outside of work, being fundamental to be disconnected from work to recharge both physically and mentally. Only through this balance we may all be at our best while working. Remote Working ConditionsAt BNP Paribas, we embrace a Smart Working framework based on trust, autonomy and collaboration. Within this framework, eligible employees can benefit from flexible remote working modalities adapted to our hybrid working environment. To guarantee a comfortable and efficient working set-up, eligible employees are provided with both the office and home equipment, are entitled to an equipment allowance and can benefit from exclusive partnerships to purchase additional equipment at reduced prices.To find out more on why you should join BNP Paribas visit https://bnpp.lk/why-BNP-Paribas-Portugal Please note that only applications submitted in English will be considered. In case you are selected for this role, further documentation will be requested to support your hiring process.