facebook linkedin

EMEA Data Privacy Director (Legal) - London or Dublin Based

London , United Kingdom

Ref#: 9677251822

Date published: 21-Apr-2021

Share with: Facebook LinkedIn Twitter Send to a friend

CBRE’s Global Data Privacy Office (GDPO) is seeking a highly motivated, experienced data privacy attorney to lead our data protection and privacy compliance program in Europe, the Middle East and Africa (EMEA).  As part of Ethics & Compliance, the GDPO is accountable and responsible for designing and maintaining CBRE’s global data privacy compliance strategy and framework.  We regularly advise on legal and regulatory privacy compliance, create privacy-compliant policies, processes, guidelines and training, and work with business stakeholders to build a privacy culture and ensure the global privacy program is put into practice.  

This instrumental role will work cross-functionally with CBRE's Digital & Technology, Legal and Ethics & Compliance teams, serve as the first point of contact for data protection and privacy issues facing the business in CBRE's EMEA Region, and work closely with GDPO teammates on global initiatives.  The position reports to CBRE’s US-based Global Director and Assistant General Counsel, Data Protection & Privacy.
Primary Responsibilities
As EMEA Data Privacy Director, you will 
Lead CBRE’s Global Data Privacy and Protection Program in EMEA
Be responsible for developing and maturing all aspects of the EMEA privacy program, including strategy, implementation, and outreach
Advise internal clients on commercially-minded privacy compliance strategies to mitigate assessed risks
Advise and collaborate with CBRE’s Digital & Technology department on Privacy by Design compliance for new technologies
Collaborate with and support CBRE’s Country Compliance and Legal teams in implementing and adapting the global privacy program to address market-based risks
Create and deliver privacy training, awareness and communications programs 
Advise CBRE’s Legal team in negotiating data processing and cross-border data transfer agreements
Assist with data privacy due diligence relating to mergers and acquisitions
Monitor and advise on emerging legal changes and regulatory developments impacting CBRE
Manage and professionally develop the GDPO’s data privacy team in EMEA
Be assigned other responsibilities and duties as needed
Qualifications and Competencies
To succeed in this role, you must
Be team-focused with a passion for learning, excellence and continuous improvement
Demonstrate respect and integrity in working with others at all levels of the business
Be qualified to practice law in the UK or EU 
Preferably have a minimum of six years’ demonstrable experience in developing and implementing a data protection and privacy compliance program at a multi-national company
Demonstrate strong strategic risk assessment and operational effectiveness
Effectively prioritize program and business-as-usual workstreams and efficiently manage time and resources
Demonstrate perseverance, resilience and ability to adapt to a rapidly changing environment
Be able to work flexibly across other time zones when necessary
Have a pragmatic, risk-based approach to data privacy compliance
Efficiently and effectively communicate complex legal topics to non-lawyers 
Lead, motivate and professionally develop your direct and matrixed reports
Be able to resolve conflicts with others in a professional and productive manner

Working at CBRE
In this role, we will offer you 
Work with a dynamic, global team passionate about achieving best-in-class privacy-compliant outcomes for our employees, clients and other stakeholders
A collaborative, supportive, cross-functional work environment 
Motivating and engaging professional challenges with the opportunity for both independence and collaboration
Work at the world’s largest commercial real estate services and investment company and one of the World’s Most Ethical CompaniesTM
A diverse and inclusive culture