Head of Data Protection & Compliance

at  Flutter Entertainment

ACCOUNTABILITIES

The individual is accountable for leading UKI’s data compliance capabilities and business units, primarily in the areas of data protection (“DP”) and artificial intelligence (“AI”) compliance. This includes:

• Managing the day-to-day activities of the Flutter UKI Data Protection & Compliance Office , in its role as a second line of defence office as part of the Risk & Legal function within Flutter UKI. This includes management of the Office’s personnel , budgets , technology/tooling and day-to-day operational activities .
• Driving a culture of ownership and accountability through the management of the network of accountable data and technology owners, and their stewards, across the business.
• Horizon scanning to stay abreast of the latest changes in data-specific legislation, compliance, legal rulings, regulator decisions & guidance, and industry standards, ensuring that our Flutter UKI DP, AI and other data compliance frameworks cover all relevant obligations and are positioned as best in class amongst our competitors;
• Providing professional data protection, privacy and AI compliance advice and support to the Flutter UKI Division as a proactive and approachable subject matter expert.
• Collaborating with key business partners within Flutter UKI to drive compliance, particularly with data governance, data management, security and product stakeholders to align and harmonise frameworks and controls.
• Overseeing and managing key DP and AI related programmes and projects.
• Assisting the DPO & DGO as required, including but not limited to:
• DP and AI compliance strategy and leadership within UKI, in accordance with our data compliance obligations, risk appetite and commercial strategy and objectives ;
• UKI’s DP and AI compliance framework design, development, delivery, maintenance and/or assurance, to facilitate Flutter UKI’s implementation of robust controls and practices that directly improve our ability to meet compliance obligations, reduce risks and deliver commercial objectives.
• Reporting to senior management on key DP and AI matters;
• Acting as a point of contact for Flutter UKI brands and liaising with data protection and related regulators ;
• Chairing and managing DP and/or AI related committees and working groups , and representing the DP and AI interests in cross departmental committees and/or forums.
• Overseeing the Data Protection & Compliance Strategy & Assurance team’s work, as well as providing guidance and direction to the team. This includes, but is not limited to, oversight of the Strategy & Assurance team’s work on :
• Monitoring and research of legislative developments, regulator guidance and decisions, case law, external and internal business environment to ensure that the Flutter UKI Data Protection and AI frameworks align with all legal requirements and industry best practice;
• Working with colleagues in other Flutter Divisions to enable the development of global frameworks, standards, knowledge transfer and best practice .
• Creating, maintaining, refining and obtaining assurance of implementation of data protection, privacy and AI policies, standards, procedures and related documentation .
• Ongoing assurance , through metrics and measurement, on policy and standards implementation.
• Development and delivery of DP training and awareness programs across the business.
• Monitoring DP, AI and data compliance risks at enterprise and operational levels, and escalating and reporting on same as required.
• Overseeing the Data Protection & Compliance Operations team’s work, as well as providing guidance and direction to the team. This includes, but is not limited to, being an escalation point and providing guidance on :
• Data protection ( DPIAs ) and AI risk assessments ;
• Data sharing relationships , contractual clauses and international transfer arrangements and risk assessments;
• Data subject rights ;
• Personal data breaches ;
• Cookies, e-privacy, adtech, and marketing compliance ;
• Other data protection, privacy and AI queries, risks and issues.

WHAT YOU’LL DO

• Owning the day-to-day activities of the Flutter UKI Data Protection & Compliance Office , in its role as a second line of defence office as part of the Risk & Legal function. This includes overseeing the office’s personnel , budgets , technology/tooling and day-to-day operational activities .
• Driving a culture of ownership and accountability through the management of the network of accountable data and technology owners, and their stewards, across the business.
• Providing professional data protection, privacy and AI compliance advice and support to the UKI Division as a proactive and approachable subject matter authority.
• Collaborating with key business partners within Flutter UKI to drive compliance, particularly with data governance, data management, security, and product partners to align and harmonise frameworks and controls.
• Being responsible for and leading key DP and AI related programmes and projects.
• Assisting the DPO & DGO as required with strategy and leadership.
• Leading the DP & Compliance Operations team’s work, as well as providing guidance and direction to the team.

HOW YOU’LL DO IT

• An experienced professional with proven experience in DP, privacy and DG , ideally having held senior DP/privacy manager or deputy DPO role(s) in similar organisation or held previous DPO role(s) in a slightly smaller organisation.
• Consistent track record of leading and delivering data protection and privacy programs and frameworks within in a similar type of business and high reaching commercial environment.
• Expertise in implementing and maintaining enterprise-grade DP and privacy management software platforms.
• People and team management experience.
• Experience working cross-functionally with all levels of management.
• Understanding of data governance frameworks (DAMA, DCAM), methodologies, processes and how to implement them.

The individual is accountable for leading UKI’s data compliance capabilities and business units, primarily in the areas of data protection (“DP”) and artificial intelligence (“AI”) compliance. This includes:

• Managing the day-to-day activities of the Flutter UKI Data Protection & Compliance Office , in its role as a second line of defence office as part of the Risk & Legal function within Flutter UKI. This includes management of the Office’s personnel , budgets , technology/tooling and day-to-day operational activities .
• Driving a culture of ownership and accountability through the management of the network of accountable data and technology owners, and their stewards, across the business.
• Horizon scanning to stay abreast of the latest changes in data-specific legislation, compliance, legal rulings, regulator decisions & guidance, and industry standards, ensuring that our Flutter UKI DP, AI and other data compliance frameworks cover all relevant obligations and are positioned as best in class amongst our competitors;
• Providing professional data protection, privacy and AI compliance advice and support to the Flutter UKI Division as a proactive and approachable subject matter expert.
• Collaborating with key business partners within Flutter UKI to drive compliance, particularly with data governance, data management, security and product stakeholders to align and harmonise frameworks and controls.
• Overseeing and managing key DP and AI related programmes and projects.
• Assisting the DPO & DGO as required, including but not limited to:
• DP and AI compliance strategy and leadership within UKI, in accordance with our data compliance obligations, risk appetite and commercial strategy and objectives ;
• UKI’s DP and AI compliance framework design, development, delivery, maintenance and/or assurance, to facilitate Flutter UKI’s implementation of robust controls and practices that directly improve our ability to meet compliance obligations, reduce risks and deliver commercial objectives.
• Reporting to senior management on key DP and AI matters;
• Acting as a point of contact for Flutter UKI brands and liaising with data protection and related regulators ;
• Chairing and managing DP and/or AI related committees and working groups , and representing the DP and AI interests in cross departmental committees and/or forums.
• Overseeing the Data Protection & Compliance Strategy & Assurance team’s work, as well as providing guidance and direction to the team. This includes, but is not limited to, oversight of the Strategy & Assurance team’s work on :
• Monitoring and research of legislative developments, regulator guidance and decisions, case law, external and internal business environment to ensure that the Flutter UKI Data Protection and AI frameworks align with all legal requirements and industry best practice;
• Working with colleagues in other Flutter Divisions to enable the development of global frameworks, standards, knowledge transfer and best practice .
• Creating, maintaining, refining and obtaining assurance of implementation of data protection, privacy and AI policies, standards, procedures and related documentation .
• Ongoing assurance , through metrics and measurement, on policy and standards implementation.
• Development and delivery of DP training and awareness programs across the business.
• Monitoring DP, AI and data compliance risks at enterprise and operational levels, and escalating and reporting on same as required.
• Overseeing the Data Protection & Compliance Operations team’s work, as well as providing guidance and direction to the team. This includes, but is not limited to, being an escalation point and providing guidance on :
• Data protection ( DPIAs ) and AI risk assessments ;
• Data sharing relationships , contractual clauses and international transfer arrangements and risk assessments;
• Data subject rights ;
• Personal data breaches ;
• Cookies, e-privacy, adtech, and marketing compliance ;
• Other data protection, privacy and AI queries, risks and issues