At the Emirates Group, we are committed to treating our customers’ privacy with respect, fairness, transparency and integrity, honouring the trust they place in us. Our Data Privacy Office (DPO) is critical in supporting our organisation’s efforts to support this commitment and complying with privacy laws around the world. The advisory specialists in our DPO are key to advising the organisation on how to manage the millions of personal data records.

The successful candidate will contribute to the enhancement of the privacy program framework and the operationalisation of key privacy program processes; and, provide privacy regulatory advice on projects; privacy strategies, policies, procedures and processes; and privacy incidents, to manage and minimise the privacy risk to the organisation. The role will lead a functional advisory team and strategic privacy projects and support the Data Privacy Officer as part of privacy leadership.

In this role, you will:

• Advise on privacy requirements for business strategic and high-risk projects and programme through identifying and evaluating the organisations data processing activities and drive privacy by design at all levels. Act as a trusted advisor on the creation and maintenance of a personal data inventory and designing with the organisation proper systems of control over personal data and advise on Data Subject Rights Requests (DSRRs), data breach incidents and supporting the organisation in conducting Privacy Impact Assessments (PIAs) whilst ensuring that any regulatory updates or industry trends are brought to the table.


• Lead on the Privacy Programme through provide insights and guidance to a network of Business Privacy Leads (BPLs) and act as a point of escalation for risks and issues raised by them on data privacy. Develop and implement necessary strategies and projects to minimise data privacy risk and provide advice to the DPO on privacy programme and DPO strategies. Ensure that any written information on the organisations obligations relating to data privacy (such as privacy notices and contractual clauses) is available to customers, employees, temporary staff, contractors and third parties. Ensure that such information is modified in line with changes to data privacy laws. In addition, support the organisation in complying with consent requirements such as gathering appropriate consent for marketing, cookie compliance on websites and maintaining an up-to-date privacy policy for customers and staff.


• Ensure the smooth running of the privacy operations through advising and supporting relevant DPO resources regarding DSRRs as well as advising on the creation and maintenance of records of processing activities (ROPA).


• Act as the primary point of contact for privacy incidents and maintain a log of any data privacy incidents and remedial recommendations and actions. Co-ordinate responses to data breaches with relevant DPO resources, especially breaches that require reporting to regulators.


• Provide advice to all employees, temporary staff and contractors related to their roles and responsibilities with regard to data privacy laws and good practice and be the organisational SME for other employees, temporary staff and contractors by providing expert advice on data privacy laws as well as any other related issues. Provide advisory services for strategic business units, projects and programmes and take the lead on the management of complex negotiations with external stakeholders. Where required liaise with external counsel to ensure compliance with privacy laws.


• Monitor data management procedures and compliance within the organisation and capture, highlight and make recommendations to the organisation on how to manage risks and issues affecting data privacy.


• Escalate risks and issues when required and provide advice on conducting PIAs. Lead on the maintenance of the organisation’s policies and procedures in respect of data privacy and report on non-compliance to the organisation. Manage data privacy risks associated with third parties through the creation of data processing agreement templates, review of contracts in co-ordination with the Data Privacy Contracts Advisor for compliance with data privacy laws and guidance to the procurement department on managing the privacy due diligence of vendors.


• Monitor regulatory updates and industry trends and maintain an up-to-date knowledge of data privacy laws, guidance and industry trends as it affects the management of data privacy risk. Understand the impact of these on the organisation and inform the stakeholders where changes are needed. Evaluate necessary policy and procedure changes, according to business need, legislation or regulatory changes.


• Develop or advise on the development of new policies and/or best practice to manage risk.


• Support the organisation in maintaining an awareness of its obligations to comply with data privacy laws, within all departments area of responsibilities and identify training requirements on privacy compliance for employees.

To be considered for the role, you must have: 

• Degree or Honours (12+3 or equivalent).


• 10+ years working within a Data Privacy Office and/or wider compliance or legal function of large organisation with a focus on privacy.

You'll have an edge, if you have:  

• Qualification from the International Association of Privacy Professionals (IAPP) is desirable.


• Solid knowledge of the GDPR or similar data privacy law.  


• Ability to handle confidential information.


• Ethical, with the ability to remain impartial and report all non-compliances.


• Strong history of successful cross-functional collaboration with others.


• Speak/write clearly and concisely with a flexible style adaptable to different needs globally. 


• Rapidly adapt to evolving situations.


• Express complex ideas in easily understandable and effective ways.


• Possess strong project management skills.


• Work independently with a high degree of accountability.


• Be proactive and demonstrate initiative, resourcefulness, and a strong work ethic. 


• Have good business judgment and think strategically.