Inspektor Ochrony Danych Grupy

at  Pepco Polska

Nasz zespół składa się z ponad 31 000 osób z 18 europejskich krajów. Zdecydowana większość (niemal 90%) pracuje w sklepach, ponad 1000 w centrach dystrybucyjnych, a pozostali w biurach w całej Europie. Centrala Pepco znajduje się w Poznaniu, gdzie podejmujemy decyzje mające wpływ na całą organizację!
STANOWISKO: Inspektor Ochrony Danych Grupy
MIEJSCE PRACY:Poznań, wielkopolskie, PL, 60-479

JOB SUMMARY

Pepco Group, founded in 2015, consists of two independent value retailers – Pepco and Poundland, operating across Europe. With a global sourcing arm, Pepco Global Sourcing, the company operates in some of Europe’s largest economies and is listed on the Warsaw Stock Exchange.
We are seeking a highly skilled Group Data Protection Officer to join our team. Reporting to the Head of Compliance, you will play a key role in implementing and maintaining a Group-wide Data Protection strategy. This role involves working cross-functionally to ensure compliance with GDPR and other data protection laws, managing risks, and developing policies.
As the Group DPO, you will oversee data protection matters across Pepco Group entities and act as the primary point of contact with global supervisory authorities. You’ll also advise the Group on data protection laws and regulations, manage data incidents, and provide training to ensure high standards of compliance.

REQUIREMENTS:

• Certified Information Privacy Professional (CIPP/E) or a qualified lawyer.
• In-depth knowledge of EU data protection laws and the ability to develop expertise in other regions.
• Strong understanding of contract law and procurement processes.
• Previous experience as a Data Protection Officer, with expertise in advising on international data transfers.
• Excellent communication and stakeholder management skills.
• Proven ability to manage multiple projects and work within a fast-paced environment.
• Tech-savvy with a good understanding of IT and InfoSec operations.

• Serve as the designated Data Protection Officer as per GDPR Article 39.
• Develop and implement a Group-wide Data Protection Strategy and policies.
• Conduct and maintain risk assessments and advise on GDPR obligations.
• Monitor and report on data protection compliance, providing feedback to senior management.
• Manage the interaction with global supervisory authorities regarding data protection.
• Oversee Data Subject Rights and Data Protection Impact Assessments.
• Aid Pepco Group Entities in the event of data protection incidents, including:
• Participating in the analysis and resolution of incidents in collaboration with the Pepco Group IT/InfoSec departments, Data, and Incident Committees.
• Making recommendations to minimize the risk of future data breaches.
• Cooperate with IT/InfoSec teams to identify and mitigate data protection risks.
• Lead data protection awareness programs and conduct staff training.