Data Protection Officer

About the position

Blockchain.com is looking for a Data Protection Officer to join a young, fast growing team at the heart of the digital asset & blockchain technology movement. Preferred candidates should have 5-7 years experience in a compliance related role with specialized knowledge of global data protection regulations, ideally having applied these principles at a FinTech company or other scale-up company in a relevant industry. This person will play a key role in helping the business build a globally sustainable, long-term compliance focused culture. They will have a rigorous, thorough, and pragmatic approach to compliance, and be excited to use that skill set to champion the privacy rights of our users. The DPO will report to our senior management, namely our Chief Compliance Officer, and will work closely with our Security, Legal, and Compliance teams.

Responsibilities

• Act as point of contact with global supervisory authorities, data subjects, internal teams, and external parties on matters concerning privacy and data protection.
• Lead investigations into suspected data breaches and make appropriate recommendations to the business regarding reporting obligations.
• Act as an integral part of our vendor management process and review and negotiate data processing agreements to ensure that third parties who process personal data on our behalf do so in compliance with data protection laws.
• Ensure DPIA's are conducted where necessary.
• Manage and respond to data subject requests within the stipulated time-frames.
• Identify and evaluate the company's data processing activities to maintain an up to date ROPA.
• Monitor data management procedures and GDPR, GLBA, CCPA, LGBA, PDPA compliance within the company.
• Collaborate successfully with internal teams to ensure privacy by design at all levels.
• Review and update data protection policies and procedures.
• Perform audits and determine whether we need to alter our procedures to comply with current and new regulations.
• Ensure our mandatory employee training remains fit for purpose and deliver ad-hoc training where required. Keep abreast of changes in law and issue recommendations to ensure compliance.

Requirements

• Extensive experience in data protection and legal compliance, gained as a DPO, Deputy DPO or Privacy Counsel.
• Expert knowledge of GDPR/UK GDPR and solid knowledge of other national data protection laws.
• Working knowledge of GLBA, CCPA, LGPD and PDPA requirements.
• Excellent people skills and the ability to highlight the value of data protection in a business environment.
• A robust but collaborative and pragmatic approach to data protection compliance.
• Knowledge of data processing operations in the Company's sector is preferable.
• Basic familiarity with information and cyber security with a 'tech savvy' mindset.
• Ability to work with and influence a variety of teams and stakeholders across the business.
• Ethical, with the ability to remain impartial and highlight all non-compliances with suitable recommendations.
• Organizational skills with attention to detail and the ability to respond quickly in a fast-paced environment.

Benefits

• Competitive full-time salary based on experience and meaningful equity in an industry-leading company
• Awesome office location in the heart of Paris
• Work from Anywhere policy
• The opportunity to be a key player and build your career at a rapidly expanding, global technology company in an exciting, emerging industry
• Unlimited vacation policy; work hard and take time when you need it
• Performance-based bonuses paid in cash
• Apple equipment provided by the company