Data Protection Officer

Deutsche Bank has been present in Romania since 1998. It delivers tailor-made products and solutions in Corporate and Investment Banking and Transaction Banking to its corporate and institutional clients as well as Private Wealth Management to private clients.

Deutsche Bank is the leading German bank. Its CEE franchise consistently wins the #1 Bank in CEE accolade (Euromoney).

Law school graduate or similar education to include familiarity with data privacy law and issues

· Very good language skills (spoken and written) in English

· Knowledge of basic banking products and business transactions

· Interest in EU law and foreign jurisdictions including GDPR

· Good grasp of commercial environment

· Pragmatic ability to balance legal and reputational risk, and regulatory expectations, with business needs

· Problem-solving ability

Provide advice on data protection issues and local management

· Ensure appropriate regulatory filings have been / continue to be made

· SPOC for local data protection authority

· Collaborate with Group Data Privacy (GDP) network, including in relation to providing local approvals for global projects

· Closely collaborate with Legal, Compliance, Human Resources (HR) and Chief Information Security Office (CISO)

· Evaluate local impact of local/regional laws and help to steer implementation

· Assist in designing / implementing checks on whether local teams are correctly implementing GDP control requirements

· Collaborate with audit teams

· Develop and conduct data privacy trainings in cooperation with GDP Training & Awareness; continuous improvement

· Draft data protection local policy and/or guidance

· Evaluate data privacy incidents and advise on resolution

· Respond to data privacy-related requests

· Assessments on DB legal bounding documents in respect of liabilities, data protection and compliance with legal requirements

· Assessing company’s departments on how to adopt and respect the policies and procedures and specific legal requirements

· Production data access monitoring

· Evaluate, review, detect and amend DB contracts (existing & new) with specific data privacy contractual liabilities and compliance provisions;

· Vendor Risk Management

o Assessment on vendor risks (Intra Group Outsourcing)

o Facilitate the Intra Group Service Agreements sign-offs

o Intra Group Service Framework Agreements

Team-oriented