We're the Sunday Times #1 best company to work for!
Sunday Times #1 best company

Data Protection Officer - London

Thanks for your interest, but unfortunately this role is no longer available. For open positions, check out our jobs board. For more on what it’s like to work at Simply Business, pay a visit to our careers hub.

Technology. Award-winning customer service. Bleeding-edge data ability.

Simply Business is a new type of insurance company, using all of the above to create the best possible insurance experience for small businesses and self-employed people.

We love working here, and have even taken the number one spot in the Sunday Times Best Company To Work For 2015 and 16 lists; we’ve stopped entering now to focus on a few bigger projects, but you get the idea. It’s a great place to work.

There are currently over 425,000 active Simply Business insurance policies in the UK alone. And we have offices in London, Northampton and Boston, USA.

Talking of offices, ours are bright, airy and geared up for really smart working. We’re flexible, with plenty of remote workers coming in and out, and we believe work and life should be hand in hand, rather than a juggling act. So no need to worry about school pick-ups, or a horrible commute.

Our people are our most important asset, so we focus on building a working life that helps us thrive, not stick. Join us and you’ll be part of our journey to creating something even better, for our customers and ourselves.

The role

As a Data Protection Officer, you’ll take the lead in ensuring our UK and international governance structure and day-to-day operations are compliant with both existing requirements, and are future-ready for GDPR in 2018.

We have a cross-functional GDPR project underway and this role will play a key part in leading that project and ensuring its success.

As a tech & data-led company in an FCA-regulated environment, our data protection compliance is critical to our continued success, so we’re looking for a strong business leader who can ensure that we not only respond to our regulatory environment, but that we are at the leading-edge of future developments.

We are currently scaling our UK business and creating a US business (with plans for future internationalisation), so this role will also be essential to our future growth plans.

As a Data Protection Officer you will:

  • develop, implement and enforce suitable and relevant privacy and data protection programs, GDPR, policies, and procedures ensuring that these are compliant with applicable privacy laws
  • inform and advise the business and its employees about their obligations to comply with the GDPR and other data protection laws, and provide appropriate guidance on the practical interpretation of data privacy legislation
  • track and report privacy risks
  • monitor compliance with the GDPR and other data protection laws
  • develop and maintain privacy impact assessments
  • manage DSARs and external requests for personal data
  • develop, present, and track relevant training in coordination with the Training Manager

Responsibilities include:

  • establishing and maintaining and a register of data owners for sets of information and educating the data owners on their responsibilities
  • overseeing and assisting in investigations into complaints about privacy breaches and undertaking reporting/remedial action as required
  • maintaining a log of any incidents, along with remedial recommendations and actions
  • creating data breach action/response plans
  • leading contact with the Data Protection Regulator about potential complaints and breaches, and ensuring that requests for information are properly handled
  • responding to queries from across the business on data protection
  • working closely with Legal, Information Security and Compliance Teams to ensure that all aspects of Data Protection Compliance have been addressed
  • managing ICO registrations

What we are looking for:

  • ISEB Certificate or equivalent Data Protection qualification
  • graduate degree or compensating experience in privacy management role in a financial services or commercial environment
  • significant previous privacy management experience
  • an excellent understanding of the DPA, GDPR and related legislation, such as PECR
  • a thorough understanding of privacy programs across the UK and EEA or other jurisdictions
  • a good working knowledge of physical and technical Information Security
  • a team player, adaptable to fast-paced, changing, and international environment
  • the ability to manage tight deadlines, planning and prioritisation
  • accuracy and attention to detail
  • a highly disciplined person - self-motivated, and delivery focused
  • excellent communication skills, both verbal and written
  • strong stakeholder management and influencing skills
  • commercial awareness

What are the benefits?

There’s all the serious (but important) stuff we call ‘core benefits’. On top of that, you can pick and choose from the more exciting options we offer – whether it’s a full gym membership or gym subsidy, comprehensive private health cover, extra holiday, or a National Trust pass.

The ‘core’ stuff

Some of these will kick in once you’re confirmed in post, but here’s the summary:

  • a salary that reflects your experience, our pay policy and the market we’re in from your first day, generous annual leave
  • life assurance (financial cover for your family, should the worst happen)
  • a cash plan to reimburse your everyday medical expenses
  • an extra day off if you get married or move house
  • an automatic enrolment pension (employer-matched at 5%)

The fun stuff

Passed probation? Time to pick and mix from things like:

  • a full gym membership
  • private medical insurance
  • extra days annual leave
  • shopping vouchers
  • dental insurance
  • travel insurance

But there’s so much more to Simply Business than insurance and memberships. We also commit to flexible working options, smart working (our offices are kitted out for you to work when and how you choose), cycle to work, eye test vouchers, and season ticket loan schemes, and we have a handy online form to put in any training or conference requests.

Best of all, though, are the groups, clubs, and adventures that come with the Simply Business territory. Forget a simple Give As You Earn scheme (although we’ve got that too) – we trek the Sahara for charity, take you on weekends away, throw epic summer parties, and meet up for book groups, public speaking coaching, yoga, manicures, beer brewing, and lots, lots more.


Bank, London

The Simply Business culture is truly unique. And you sort of have to come and spend time with us to appreciate it. So get that application in and we’ll take it from there.

How to Apply

If you are interested in working for us, then please email your application to careers@simplybusiness.co.uk, or uscareers@simplybusiness.com for roles based in the US, quoting the specific job role in the subject line.

Note for recruitment agencies We have an internal team in place for our recruitment needs, so we tend not to use recruitment agencies. If we do not have signed terms of agreement with your company, then we advise against you sending us any speculative candidate profiles. They will not be subject to any terms and conditions, regardless of whether we progress with the candidate.