Senior Data Protection and Compliance Officer (m,f,d)

We are seeking a highly skilled and motivated Senior Data Protection and Compliance Officer (mfd) to join our team. The candidate will play a crucial role in ensuring compliance with (1) Data Protection regulations in Germany and Austria. It is a plus if the candidate also has experience in either (2) Ethics & Anti-Corruption related topics and/or (3) Regulatory responsibilities.

Key Responsibilities:

1. Data Protection (must-have)

Local Data Protection leadership: Leading data protection in Germany and Austria for example by implementing and maintaining local data protection policies and processes in compliance with relevant data protection legislation participating in internal and external audits and being information about the latest developments on privacy laws.

Business Partnership: Acting as a trusted partner to the business providing expert guidance on relevant data protection matters drafting and negotiating data processing agreements managing relevant consultations with the Works Council and acting as the contact person for the national data protection supervisory authorities.

Operational responsibilities : Overseeing all core privacy operations including maintaining records of processing activities (RoPA) providing support in conducting impact assessments (DPIAs) managing data subject requests and leading data breach response procedures.

Fostering a Privacy Culture: Contributing to data protection awareness through company-wide trainings conducting additional local data protection trainings and acting as the key liaison to the Group Data Privacy Office contributing to our global privacy community.

2. Ethics & Anti-Corruption (nice-to-have)

Program Development & Implementation: Designing implementing and maintaining the ethics and anti-corruption program including all related policies controls and risk assessments to proactively manage internal fraud business integrity and corruption risks.

Business Partnership & Advisory: Serving as a trusted advisor to business and legal teams providing expert guidance on third-party due diligence conflicts of

interests gifts and hospitality and the negotiation of ethics-related contract clauses.

Training & Awareness: Championing ethical conduct by developing and delivering engaging training programs for all employees on business ethics and internal fraud related topics.

Investigations & Case Management: Acting as the primary point of contact for ethical concerns handling of whistleblowing cases managing confidential reports and leading fair timely investigations to ensure effective resolution and non-retaliation.

3. Regulatory (nice-to-have)

Regulatory Watch & Analysis: Conducting continuous monitoring of the regulatory environment for payments maintaining a central knowledge base and providing actionable summaries to relevant teams.

Compliance Advisory: Acting as the go-to expert for payment regulations responding to customer inquiries advising on business initiatives contracts and terms in collaboration with Legal local compliance and external counsel.

Framework & Policy Development: Defining reviewing and updating the compliance framework policies and controls to align with best practices and new regulations.

Reporting & Coordination: Managing all regulatory reporting requirements for both internal Group Compliance and external bodies while helping to coordinate projects and activities within the Financial Services Compliance network.

Qualifications:

Core Requirements

Education & Experience: A degree in Law Business or a related field or equivalent practical experience in a compliance function. You have proven experience drafting negotiating and reviewing contracts and other compliance-related legal documents.

Legislative Expertise: Deep knowledge of the core legislative frameworks relevant for this role specifically the GDPR and local data protection legislation.

Practical knowledge: Possess strong analytical and problem-solving skills with the ability to translate complex regulations into practical business advice.

Collaboration & Communication: An excellent communicator with the interpersonal skills to work effectively both independently and as part of a diverse international team.

Languages: Native or highly fluent in German and business fluency in English (both written and spoken) are essential for this role.

What Will Make You Stand Out:

Familiarity with either Ethics and/or Regulatory as described above and related frameworks for Ethics (e.g. anti-bribery laws and whistleblower protection) and Regulatory (e.g. PSD2/PSR CESOP).

Familiarity with additional regulations such as the Digital Operational Resilience Act (DORA) or EBA guidelines on Outsourcing.

An affinity for related technology particularly the infrastructure and systems behind modern payments.

Knowledge of international sanctions and export control regimes.

Hands-on experience with OneTrust.

Relevant professional certifications such as CIPP/E CIPM CFE or ACAMS-ABAC.

Fluency in other European languages (e.g. French Spanish).

#LI-AB1