Data Protection Officer

at  Clear Street

ABOUT CLEAR STREET:

Clear Street is modernising the brokerage ecosystem. Founded in 2018, Clear Street is a diversified financial services firm, replacing the legacy infrastructure used across capital markets.
We started from scratch by building a completely cloud-native clearing and custody system designed for today’s complex, global market. Clear Street’s proprietary prime brokerage platform adds significant efficiency to the market, while focusing on minimising risk, redundancy, and cost for clients. Our goal is to create a single source-of-truth platform for every asset class, in every country, and in any currency.
By combining highly-skilled product and engineering talent with seasoned finance professionals, we are building the essentials to compete in today’s fast-paced markets.

SKILLS REQUIRED:

• At least ten years of global experience in the oversight and management of data protection and privacy compliance including the interpretation and application of data protections laws
• Prior experience of working as a DPO or Deputy DPO
• Deep understanding of Data Protection Act, GDPR, Privacy and Electronic Communications Regulations, and future data privacy legislation, best practices, and relevant law for a FinTech organisation
• Strong understanding of data protection principles, privacy risk management, and control frameworks
• Solid comprehension of information technologies and data security best practices
• Confidence in dealing with staff at all levels of the organisation and experience of dealing with senior management
• Ability to bring about organisational change in a fast paced and dynamic operating environment

THE ROLE:

We are looking for a Global Data Protection Officer to establish and manage a robust data protection and privacy programme, ensuring that the business complies with GDPR and other pertinent data protection regulations. You will be the Global SME for the management of data protection, charged with developing appropriate policies and procedures and supporting the effective implementation of these across the firm. You will advise on privacy matters, liaise with regulatory bodies and review and enhance existing data protection frameworks to ensure they align with evolving regulatory requirements.
This is an excellent opportunity for those wanting to contribute within a fast-paced financial technology environment. The right candidate will have the opportunity to make a big impact through building and shaping this capability across the business globally.

RESPONSIBILITIES:

• Lead privacy initiatives including large-scale, cross-functional programmes of work; provide privacy advice on innovative business projects (e.g. SaaS, algorithms, GenAI, automation etc.)
• Collaborate with our internal partners (business, Compliance, Risk, Legal, Internal Audit) and external stakeholders to deliver on the data protection and privacy programmes
• Establish a culture that values data governance and compliance across all relevant jurisdictions
• Conduct Data Protection Impact Assessments (DPIAs) and oversee the handling of high-risk data processing activities
• Manage relevant personal data incidents, including identification, investigation, containment, response and closure
• Advise on data protection matters such as Data Subject Requests, Personal Data Breaches, Data Protection Impact Assessments, vendor due diligence, and data retention, impact of new business initiatives on the internal data protection control framework and identify and implement associated new controls where necessary
• Monitor data flows and identify potential risk areas and/or breaches
• Monitor compliance with applicable data protection requirements, identify areas for improvement and implement / supervise related corrective action plans
• Respond to any regulatory queries
• Ensure appropriate training is delivered on relevant legal, regulatory and internal requirements
• Provide executive reporting on the data protection and privacy programme