Job Purpose
The Data Protection Officer (DPO) is responsible for the administration of the Data Protection Act (DPA) and carry out the due diligence processes to ensure adherence to the Act. The DPO will play a critical role in implementing and maintaining effective data protection policies, procedures, and practices to mitigate the risks associated with handling personal data of different stakeholders. The DPO will serve as a focal person for the Authority on data protection matters..
The incumbent will be responsible for, amongst others, the following:
Policies & Strategy
• Formulate, implement and cascade strategies, policies and guidelines in compliance to the Data Protection Act (DPA) and any other applicable data protection laws.
• Set standards and improvement of processes, procedures, strategies, governance frameworks and solutions as per the requirements of DPA.
• Coordinates and drives assessment and alignment of data management policies, procedures and standards to ensure compliance with DPA.
Budget & Accounts
• Monitoring and ensuring compliance with applicable data protection laws, regulations, and guidelines, or any relevant legislation.
• Reviewing and updating privacy notices, consent forms, and other privacy-related documents to ensure they are accurate, transparent, and easily understandable.
• Evaluate and monitor the data protection practices of third-party vendors and service providers with whom the organisation shares personal data.
• Maintaining a comprehensive data breach response plan.
• Handling data subject requests within the required timeframes.
• Providing guidance and support to staff members who handle data subject requests or inquiries.
• Staying up to date with changes in data protection laws and guiding the Authority on necessary adjustments to policies and procedures.
• Review and negotiate data protection clauses in contracts and agreements to ensure appropriate safeguards and compliance with data protection requirements.
• Investigation & Audits Conducting investigations into data breaches or security incidents, documenting findings and implementing corrective measures to prevent a recurrence.
• Assesses risks inherent in the processing of personal data within the Authority
• Coordinating and conducting data protection audits.
• Conducts impact assessments on the protection of data.
Training, Reporting & Record Keeping
• Provide training programs for employees to raise awareness of their responsibilities and obligations on data protection.
• Coordinating and conducting data protection audits.
• Prepares reports on matters related to processing of personal data for submission to the Commission or as may be directed to the relevant Authorities.
• Maintaining a comprehensive data inventory, documenting the types of data collected, processed, and stored, as well as the purposes and legal bases for processing.
• Develops and maintains inventory and records of all data processing activities in the Authority.
• Stakeholder Management Working with key internal stakeholders in the review of projects and related data to ensure compliance with the DPA and where necessary, complete and advise on privacy impact assessments.
• Collaborating with relevant stakeholders to ensure that privacy considerations are embedded in the design and development of new products or services.
• Foster a culture of privacy and data protection throughout the organization by promoting best practices and continuous improvement.
Academic Qualification and Experience
The right candidate will possess:
• Degree in Law/Data Science/Information Technology/ Project Management or any other related field.
• Data Protection and/or Privacy certification will be an added advantage
• At least five (5) years similar post qualification experience.
To Apply
Interested candidates should submit their application letter addressed to the Chief Executive Officer, detailed curriculum vitae (CV), certified copies of academic certificates and their Identity Document (ID) to:
Email Subject: Data Protection Officer
NB: Only shortlisted candidates will be responded to.
This position is ideal for someone passionate about cyber defense, threat detection, and protecting critical infrastructure......
Apply For This JobDevelop and implement compliance policies, processes and controls to strengthen the compliance oversight mechanisms......
Apply For This JobImplements compliance activities within the communications sector through Monitoring, Investigation and Enforcement to enhance competition and ensure fair regulation......
Apply For This Job