Data Protection Manager

  • WorldRemit
  • London, UK
  • Feb 07, 2019
Full time Legal

Job Description

Company Information

WorldRemit is changing the way people send money abroad. We’ve taken something complicated and made it simple. Tap the WorldRemit App or click our website and your international transfer is made to a bank account, cash pickup, Mobile Money, or airtime top-up. We send from more than 50 countries to more than 140 countries and the number is growing all the time.

Using WorldRemit is easy because we do the hard bit, connecting hundreds of banks, money agents, mobile operators and payment systems around the world. These were never designed to work together, but WorldRemit makes it happen.

The journey is just beginning. We believe in faster, simpler, lower-cost money transfers. That means building beautiful products and better services for our customers.

Changing the world isn’t easy – so we only hire the most talented people. You need to think differently, believe in new solutions to old problems, and have the drive to make them happen.

WorldRemit has grown at an average 50% year on year and is now processing over £1.5bn of remittances on an annualized basis. The company just went through its Series C financing and raised $40m. The company currently employs over 600 employees and has offices in London, Australia, New Zealand, USA, Canada and other locations.

 Role Overview

You will be expected to manage WorldRemit’s data protection strategy and processes and to lead on the implementation and management of WorldRemit’s data protection policy, primarily in the UK and in the European Union, but also overseeing and ensuring consistency of approach across other jurisdictions where WorldRemit operates directly, supporting our local teams in this area.

This will involve liaising with internal stakeholders, law firms and other external advisors with the aim of ensuring and, where possible, future-proofing WorldRemit’s compliance with applicable data protection legislation and fostering a culture of ‘data protection by design’ within the group.

You will sit within the Legal team and will work closely with the following teams (among others): Risk, Compliance, Customer Services, HR, Product, Marketing and Technology.

Specific Responsibilities 

  • Oversee and supervise WorldRemit’s internal and external data processing activities.
  • Always keep up-to-date, and ensure continuing implementation of, WorldRemit’s data protection policy and connected policies and processes, internally and in relation to third party processors.
  • Ensure consistency of approach at global level in respect of data protection strategies.
  • Advise internal teams, with the help of the rest of the Legal team, on compliance with data protection legislation and requirements.
  • Provide assistance and coordination in respect of WorldRemit’s approach to data subjects’ rights (e.g.: subject access requests; data erasure or rectification requests).
  • Monitor and pro-actively address any issues, potential issues or risks arising in relation to the protection of personal data.
  • Lead WorldRemit on its “data protection by default” and “data protection by design” strategies, including by advising internal teams on new products or processes.
  • Support the marketing team in deploying a compliant direct marketing strategy.
  • Contribute to horizon-scanning activities to ensure readiness for upcoming changes in laws and regulations.
  • Create and deliver internal awareness campaigns at a global and local level.
  • Reporting to relevant Executive Committees.

Profile Overview

We are looking for an enthusiastic data protection manager with solid proven skills, ready to take ownership of a crucial role within the business.  You will be used to an in-house environment and be ready to hit the ground running at a fast-growing FinTech. 

Someone with a solid knowledge of applicable data protection laws and regulations, familiarity with the ICO’s approach and agenda, and willingness to engage with different cultures and styles is key.

The role will involve briefing very senior stakeholders so somebody who understands the importance of seeing the big picture and using the right tone and language to discuss issues will be key.

The right candidate should also display an enthusiasm for the data protection, actively engaging in external forums and providing thought leadership.

You will also be sensitive and knowledgeable about marketing activities and related regulations and requirements.

Last but not least, intellectual curiosity and desire for breadth of workload is important.  You will rarely encounter the same issues each day and the right candidate for this role will see that as an advantage.

Skills, Experience and Attributes

  • At least 3-6 years of experience in a regulatory compliance, risk compliance or legal advice role, of which at least 2 years should have been spent specifically on data protection.
  • Self-starter attitude with a strong eagerness to drive the group’s data protection agenda.
  • Strong communication skills and desire for responsibility.
  • Proactive engagement with stakeholders.
  • Strong attention to detail.
  • Familiar with technology and curious about embracing automation and digital solutions to data-related tasks and issues.
  • Ability to summarise issues succinctly to senior stakeholders and to be flexible and pragmatic with advice.
  • Curiosity and breadth of thinking; spotting issues around the corner.
  • Acts as data protection role model and keen to develop.