The bank for a changing world

We are looking for

Data Protection Correspondent - m/f

Job type Permanent
Schedule Full time
Level of experience 6 to 10 years
Apply REF: DEU001903

BNP Paribas is a global bank with four domestic markets in Europe: Belgium, France, Italy and Luxembourg. It is represented by 192,092 employees in 74 countries worldwide. The BNP Paribas Group has been active in Germany since 1947 and has successfully positioned itself on the market with 13 companies. Private customers, companies and institutions are looked after by roughly 5,000 employees in all relevant economic regions.


For our office in Frankfurt am Main we are looking for a



Data Protection Correspondent - m/f


Your responsibilities

  • Act as the key point of contact and cooperate with relevant Data Protection Authorities (DPA) on issues relating to personal data processing
  • Act as a point of contact for data subjects with regards to significant issues
  • Define general policies and guidelines on personal data protection and ensure their consistence with the relevant Group policies and guidelines
  • Contribute to the monitoring of the regulatory landscape on data protection regulations and the relevant communication performed by LEGAL
  • Review and advise on implementation of Business Lines’ policies and guidelines on Personal Data
  • Protection and monitor consistency in their implementation (Consent collection process, cross border transfers, management of retention or personal data obsolescence)
  • Review and advise on implementation of Privacy by design principles, Privacy Impact Assessment and Personal Data Security principles and management of personal data breaches
  • Contribute to risk evaluation in case a personal data breach occurred to ensure in a timely manner
  • Build and implement an awareness program and contribute to the promotion of a data protection culture
  • Ensure that trainings to the employees involved in processing activities are sufficient and provided on a periodic basis to maintain data protection awareness
  • Define and perform risk-based second level of controls on processes related to personal data protection
  • Assess effectiveness of the 1st Line of Defense (business and IT) controls on Personal Data Protection based on Generic Control Plans defined by the Group
  • Provide independent reporting and alert on critical points to senior management

Your skills

  • Several years of experience with significant knowledge and experience in Data Protection/Privacy and banking sector
  • Understanding of data processing operations, including business applications and data use
  • Experience in interacting with regulators
  • Experience in project management and change management transversally
  • Experience of advising on regulatory requirements
  • Strong knowledge and interest in Information Technology, digital and new technologies and understanding of information security principles and controls
  • Independency, objectivity and integrity. ability to lead, engage and work transversally
  • Excellent writing and communication skills
  • Ability to manage and develop teams’ knowledge on data protection and privacy
  • Be a role model, supporting and fostering a culture of good conduct
  • Demonstrate proactivity, transparency and accountability for identifying and managing conduct risks
  • Qualification on Data Privacy is highly appreciated
  • Fluent in English and German  
Primary Location: DE-HE-Frankfurt am MainJob Type: Standard / PermanentJob: MISCELLANEOUSEducation Level: Not indicatedExperience Level: At least 10 yearsSchedule: Full-time