Data Privacy Analyst

Since launching in 1989, CMC Markets has become one of the world's leading online CFD and financial spread betting providers executing millions of retail customer trades annually across UK, Europe, Asia Pacific and North America. CMC Markets’ success is founded on its ability to deliver a wide range of trading products to customers through its in-house developed proprietary trading platform technology. 

CMC Markets has pioneered the development of online trading in markets around the world to become a leading spread betting and CFD provider, the Group also offers Investment, Stockbroking and Institutional services, which are predominantly developed in house.

*** Please note that this role is onsite and would require 5 days per week in our London office near Liverpool Street. ***

ROLE AND RESPONSIBILITIES

Strong generalist with will contribute to maintaining a Data Privacy Framework across the group in UK, Europe and APAC, Dubai, USA, Canada, and other jurisdictions.

Process data subject access requests and maintain procedures and systems to support the same.

Manage the DPO Inbox to identify SAR’s, Erasure request and other business communication.

Maintain procedures to respond to requests for right to be forgotten or for retention and erasure of data.

Help maintain personal data inventory ROPA and Data discovery targeting of personal data held by the CMC Group.

Demonstrate strong research and report writing skills, including an understanding of Data Privacy Legal principles and laws as well as an understanding of IT

Engage advise key teams across Financial Services including Marketing, , IT Development, IT Security, Operations, Legal, Compliance, Risk Management, Client Services, Project and Product Management, Business Intelligence while supporting Senior Management and regulators across multiple jurisdictions and different business areas.

Researching data privacy and data breach laws for individual countries affecting the Group’s clients, employees, and vendors.

Managing data privacy breaches and incidents in conjunction with information security and other business areas as required.

Support on the creation of MIS reports/metrics in relation to Data Privacy e.g. Data Breach Reports.

Contribute to supporting Due diligence and manage third party risk including reviewing contracts and DPA’s. Maintaining internal data privacy policy and notices for the Group.

Work collaboratively with Marketing and IT on projects related to Cookie Compliance, Mobile App Compliance.

Maintain personal/professional development to meet the changing demands of the role, including all relevant regulatory and legislative training and new technologies, laws impacting personal data including AI.

Contribute to Data Privacy culture awareness and training initiatives.

Take all reasonable steps to ensure appropriate confidentiality.

Undertake such other duties, training and/or hours of work as may be reasonably required, and which are consistent with the general level of responsibility of this role.

KEY SKILLS AND EXPERIENCE

Proven experience in Privacy (GDPR, UK DPA and other global privacy regulations)

Attention to detail; strong analytical and problem-solving skills.

Ability to write reports.

Ability to identify potential risks and design appropriate solutions to remove/reduce them.

Excellent communication skills, both oral and in writing, with the ability to work across different jurisdictions and with stakeholders across different parts of the firm.

Ability to build business relationships and to work as part of a team.

Capacity to influence and convince.

Ms Office – Word, Excel, PowerPoint.

Willingness to learn legal principles and concepts- and to expand technical knowledge.

Financial Services experience desirable