Data Privacy Manager

About The Role

This Data Privacy Manager will work closely with the GEMS Education Legal, Compliance, Audit, and Information Security functions to develop and monitor policies and standards applicable to the business and in compliance with the GDPR.

Key Accountabilities:

Development and implementation of local data protection as required by legislation; and security and risk management in relation to compliance.
Monitor compliance, act as a point of contact with the supervisory authority, and perform annual assessments.
Establish the data privacy policy and procedures with the help of the group’s chief audit executive.
Build an effective data protection and privacy strategy and monitor its implementation across the organisation.
Interpret the local and international legislative and legal requirements into language that is understandable for business.
Working with the data governance team to ensure best practices across the group
Guide and advise businesses on data privacy-related matters, including but not limited to compliance, governance, policies, and procedures as set out for the organisation.
Ensure the consistent application of policies and standards across all technology projects, systems and services, including, but not limited to, privacy, risk management, and compliance.
Train and advise staff on the provisions of Data Privacy.
Provide best practice guidance on data protection and data privacy to relevant stakeholders across the organisation.
Act as the contact point for the local manager of data protection on issues relating to the processing.
Ensure that all data collection methods are reviewed by the InfoSec department to ensure that collected data continues to be adequate, relevant, and not excessive.
Review the retention dates of all the personal data processed by GEMS, by reference to the data inventory and will identify any data that is no longer required in the context of the registered purpose. This data will be securely deleted/destroyed in line with the Secure Disposal of Storage Media Procedure.
Carry out a risk assessment considering all the circumstances of GEMS’ controlling or processing operations.

Job-Specific Knowledge & Skills:

8 years of Experience in data science fields with a Minimum of 5 years of Experience in Data privacy and GDPR of UAE laws.
Expert knowledge of data privacy legislation including GDPR and be able to draw on the privacy teams and expertise including local data protection laws.
Excellent working knowledge of the Data Protection Act (1998) and an understanding of the GDPR.
Extensive knowledge of IT Governance Risk & Compliance Framework.

About Your Benefits

An attractive remuneration package is on offer to the successful candidate including tax-free salary, medical cover, tuition fee concessions, annual leave, and end-of-service benefits.

About GEMS

Trusted for over 60 years and now a third generation education family, GEMS Education began in a single school room in Dubai. Today, we have the privilege of educating over 170,000 students from over 176 countries through GEMS owned and managed schools globally; over 270,000 students access resources through our services division.

About Application Process

If you meet the criteria and you are enthusiastic about the role, we would welcome your application.

To complete the application you would need the following document(s):

Resume/CV
Professional Photograph

In line with the UAE’s Emiratisation goals, GEMS welcomes and encourages applications from UAE nationals to join our fast-growing team.

Important Note : GEMS Education is committed to safeguarding and promoting the welfare of all of its students. Applicants will be required to submit a current police criminal clearance check or equivalent from their home country or current country of residence prior to appointment.