Contract Data Protection Officer (DPO)

Location: Dublin, Ireland (Hybrid – only occasional on-site attendance for meetings and workshops)

Contract Type: 12-Month Contract

Start Date: ASAP

Sector: Regulatory / Public Sector

Reports To: Senior Analyst – Governance

Role is offering - €400 - €440 a day

Overview

We are seeking an experienced Data Protection Officer (DPO) and Data Privacy specialist to provide expert leadership, oversight, and assurance on all aspects of GDPR and Data Protection compliance within an Irish Regulatory body.

This is a 12-month hybrid contract based in Dublin, with flexibility to work remotely and periodic on-site attendance for key meetings, workshops, and governance sessions. The successful candidate will serve as the designated DPO, providing strategic and operational guidance on data protection obligations, risk management, and continuous compliance improvement.

Key Responsibilities

Regulatory Compliance & Oversight

• Monitor and oversee the compliance with the GDPR, Data Protection Act, and the organisation’s Data Protection Policy.
• Establish and implement a continuous monitoring and testing framework to assess and improve compliance.
• Maintain an up-to-date and comprehensive Record of Processing Activities (ROPA) in line with GDPR Article 30 requirements.

Data Subject Rights & Governance

• Manage all Data Subject Rights (DSR) requests, including coordinating responses, advising on exemptions, and providing sign-off for final communications.
• Oversee the Data Protection Impact Assessment (DPIA) process for new systems and projects, advising where formal DPIAs are required, reviewing submissions, and consulting with the Data Protection Commission (DPC) where high risks remain.
• Advise on GDPR interpretation and provide guidance to internal teams on complex data protection queries, risk mitigation, and best practices.

Policy & Framework Development

• Lead the continuous development and implementation of the data protection policies, procedures, and frameworks.
• Develop and monitor a third-party assurance framework for managing suppliers and data processors, including review and advice on Data Processing Agreements (DPAs) and data sharing arrangements.
• Oversee and advise on Memorandums of Understanding (MOUs) and other data-sharing agreements involving personal information exchange with external bodies.

Regulatory Engagement & Reporting

• Act as the primary point of contact for the Data Protection Commission, data subjects, and all internal/external data protection queries.
• Manage communication with the DPC regarding audits, investigations, or information requests, ensuring timely and accurate responses.
• Coordinate the management of personal data breaches, including incident investigation, notification to relevant parties, and post-incident review.
• Deliver quarterly reports to the Finance and Governance Committee, providing updates on compliance KPIs, staff training, breaches, and data subject requests.
• Attend governance meetings and workshops as required to advise on data protection matters.

Collaboration & Advisory Support

• Work closely with the Senior Analyst – Governance, Director of Operations & Organisational Development, and the Chairperson as required.
• Support and advise the wider data protection team, fostering a culture of accountability, awareness, and continuous improvement.

Essential Experience & Skills

• Proven experience as a Data Protection Officer or senior data protection professional within a public sector, regulatory, or highly governed organisation.
• Strong understanding of GDPR, the Data Protection Act 2018, and associated regulatory frameworks.
• Demonstrable experience in policy development, DPIA oversight, records of processing, and data breach management.
• Skilled in stakeholder management with the ability to engage effectively with senior leadership, regulators, and technical teams.
• Confident communicator with experience presenting to governance committees and producing executive-level compliance reporting.
• Sound judgment and the ability to balance regulatory compliance with operational practicality.

Desirable

• Professional certification such as CIPP/E, C-DPO, or equivalent.
• Prior experience within an Irish regulatory, utility, or public administration environment.