Hargreaves Lansdown

Finance / FinServ

DataProtectionOfficer

bristol, england, united kingdom FULL TIME Remote Friendly

The Brief

“Data Protection Officer at Hargreaves Lansdown. Skills: UK GDPR, Data Protection Act 2018, PECR, international privacy frameworks, Data Protection Impact Assessments (DPIAs), risk based assurance and oversight, privacy by design, robust governance, regulatory developments and best practice. overseeing compliance with UK GDPR, the Data Protection Act 2018 and related privacy regulations across the HL Group. monitoring compliance through risk based assurance and oversight”

Industry & Context.

Finance / FinServ

Problems you'll solve

translating regulatory requirements into practical, operational compliance; identifying, assessing, and managing data protection risks

What They're Looking For.

Must Have

Deep understanding of GDPR, PECR, the UK Data Protection Act 2018, and broader international privacy frameworks, Proven experience advising on data protection compliance in complex organisations, track record of developing and embedding privacy policies, procedures, DPIAs, Record of Processing Activity (RoPAs), and incident‑response processes, Ability to translate regulatory requirements into practical, operational compliance across diverse business areas, Skilled in identifying, assessing, and managing data protection risks, including reviewing data flows, suppliers, contracts, and system designs, Confident engaging with stakeholders at all levels, providing clear, pragmatic advice and constructive challenge, Demonstrates the independence, integrity, and sound judgement required of the DPO role, with the ability to lead decisions and prioritise effectively, Committed to fostering a culture of compliance and continuous improvement across the organisation

Nice to Have

experience in financial services or other highly regulated sectors desirable

What You'll Do.

overseeing compliance with UK GDPR

the Data Protection Act 2018 and related privacy regulations across the HL Group

monitoring compliance through risk based assurance and oversight

serving as the primary contact for the Information Commissioner’s Office (ICO) and individuals exercising their data protection rights

supporting privacy by design across all HL Group entities

operations and processing activities

maintaining robust governance

reporting on emerging risks

ensuring alignment with regulatory developments and best practice

Act as HL’s expert adviser on UK GDPR and privacy obligations

providing clear guidance to teams and processors across the Group

Monitor and challenge compliance with data protection law

and governance standards

Oversee and advise on Data Protection Impact Assessments (DPIAs)

ensuring robust governance and well‑managed high‑risk processing

Serve as HL’s primary contact for the ICO and individuals exercising their data rights

Maintain and enhance HL’s privacy governance framework

and oversight mechanisms

Provide independent challenge on privacy risks

and produce insightful

risk‑based reporting for senior leadership and the board

Support privacy by design across projects

technology initiatives

supplier arrangements

and transformation programmes

Lead assurance activity through thematic reviews

breach governance review

and monitoring of remediation actions

Identify emerging privacy risks and regulatory developments

turning them into practical expectations for the business

Drive awareness and capability by shaping HL’s privacy training strategy and coaching privacy champions and operational owners

How You'll Work.

Team & Collaboration

providing clear guidance to teams and processors across the Group; engaging with stakeholders at all levels; providing clear, pragmatic advice and constructive challenge; coaching privacy champions and operational owners

Communication Scope

providing clear guidance; providing clear, pragmatic advice

Process & Methodology

Support privacy by design across projects, technology initiatives, supplier arrangements, and transformation programmes

Free ATS check

Applying for this Data Protection Officer role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 26 detected

Core

UK GDPR ×5

Data Protection Act 2018 ×5

PECR ×5

international privacy frameworks ×5

Data Protection Impact Assessments (DPIAs) ×5

Required

risk based assurance and oversight ×3

privacy by design ×3

robust governance ×3

regulatory developments and best practice ×3

Record of Processing Activity (RoPAs) ×3

incident‑response processes ×3

data protection risks ×3

data flows ×3

suppliers ×3

contracts ×3

Nice to have

strategic and pragmatic advice

privacy governance framework

risk-based reporting

assurance activity

control assessments

breach governance review

remediation actions

emerging privacy risks

privacy training strategy

coaching privacy champions and operational owners

Behavioural

independent oversight

practical guidance

providing clear, pragmatic advice and constructive challenge

independence

integrity

sound judgement

ability to lead decisions and prioritise effectively

Committed to fostering a culture of compliance and continuous improvement

Role Details

Seniority

mid

Work Mode

Hybrid

Type

FULL TIME

AI-Extracted Insights

Domain Areas

uk-gdpr

data-protection-act-2018

pecr

international-privacy-frameworks

financial-services-or-other-highly-regulated-sectors

How to Apply on Workday

Workday has a multi-step form — save your progress after every section.
"Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
Job requisition numbers are useful when following up with HR by email.

ANONYMOUS · UNFILTERED

What do employees actually say about Hargreaves Lansdown?

Real rants from real employees. Read before you apply.

Read Company Rants →