Companies GSSTech Group Data Protection Officer (DPO)

About the role

GSSTech Group

The Data Protection Officer (DPO) is responsible for ensuring Organization compliance with applicable data protection and privacy regulations, overseeing lawful processing of personal and sensitive data, and acting as the primary liaison with regulators on data privacy matters.


KEY RESPONSIBILITIES

 

1. Regulatory Compliance & Governance

• Ensure compliance with UAE Federal Decree-Law No. 45 of 2021 (Personal Data Protection Law – PDPL), UAE Data Office regulations, and applicable CBUAE requirements.

• Develop, implement, and maintain data protection policies, standards, and procedures.

• Embed privacy governance across insurance operations including underwriting, claims, customer service, digital channels, and analytics platforms.

 

2. Advisory & Oversight

• Advise senior management and business units on data protection obligations and risk exposure.

• Support Privacy-by-Design and Privacy-by-Default across systems and processes.

• Review new initiatives involving personal data, cloud services, AI/ML, and third-party integrations.

 

3. Data Subject Rights Management

• Oversee processes for data subject access, correction, erasure, restriction, objection, and portability requests.

• Act as escalation authority for data privacy complaints and disputes.

 

4. Incident & Breach Management

• Lead assessment and response to data breaches and privacy incidents.

• Coordinate regulatory notifications and remediation actions within statutory timelines.

 

5. Risk Assessments & Documentation

• Conduct Data Protection Impact Assessments (DPIAs).

• Maintain Records of Processing Activities (RoPA).

• Identify, assess, and mitigate privacy risks across systems, applications, and vendors.

 

6. Third-Party & Cross-Border Data Management

• Review and approve Data Processing Agreements (DPAs).

• Ensure cross-border data transfers comply with PDPL and regulatory requirements.

 

7. Training, Awareness & Audit Support

• Drive organization-wide data privacy awareness and training programs.

• Support internal audits, external audits, and regulatory inspections.

 

8. Regulatory Liaison & Reporting

• Act as the primary point of contact with the UAE Data Office and other regulators.

• Provide periodic compliance reports to senior management and the Board.

 

Requirements

QUALIFICATIONS & EXPERIENCE

• Bachelor’s degree in Law, Information Security, Risk, Compliance, or related discipline.

• 8–12 years of experience in data protection, privacy, or information governance.

• Prior experience in Insurance or BFSI sector preferred.

• Experience handling sensitive, financial, and health-related personal data.

 

CERTIFICATIONS (Preferred)

• ISO/IEC 27001 Lead Auditor / Implementer

• CIPP/E, CIPP/A, CIPM, or equivalent privacy certifications

 

INDEPENDENCE & AUTHORITY

• The DPO shall operate independently and without conflict of interest.

• Direct access to senior management and the Board is mandatory.

Ready to apply to GSSTech Group?
Apply to GSSTech Group

Similar jobs

Cohere
Counsel, Privacy and AI Regulation (EU)
Cohere
⚡ Apply early Europe Remote £156,000–£156,000
● New 👁 Seen ✓ Applied 2h ago
GBG
US Privacy Counsel/ Data Protection Manager
GBG
⚡ Apply early Atlanta, Georgia, United State... Remote
● New 👁 Seen ✓ Applied 9h ago
Scout Motors
Senior Counsel, Privacy, Cybersecurity, and AI Governance
Scout Motors
⚡ Apply early Charlotte, North Carolina, Uni... Onsite $170,000–$206,250
● New 👁 Seen ✓ Applied 17h ago
Babylist
Principal Counsel, Privacy
Babylist
⚡ Apply early United States Onsite $229,412–$275,311
● New 👁 Seen ✓ Applied 17h ago
Chime Financial, Inc
Director, Associate General Counsel, Privacy, Cybersecurity, and AI
Chime Financial, Inc
⚡ Apply early New York, NY, USA; San Francis... Onsite
● New 👁 Seen ✓ Applied 1d ago
NG
Group Function - Privacy Legal Counsel
NetEase Games
⚡ Apply early Hong Kong; Singapore-Guoco Mid... Onsite
● New 👁 Seen ✓ Applied 1d ago
Genetec
Conseiller(ère) juridique / Legal Counsel - Commercial, Products, and Privacy
Genetec
⚡ Apply early Montreal, Quebec, Canada Onsite
● New 👁 Seen ✓ Applied 4d ago
L(
Managing Counsel, Privacy and Data Security
LA28 (Web)
⚡ Apply early Los Angeles, California, Unite... Onsite $160,000–$175,000
● New 👁 Seen ✓ Applied 4d ago
Recursion
Senior Counsel, Privacy and Compliance
Recursion
⚡ Apply early New York, New York; Salt Lake... Onsite $251,900–$309,760
● New 👁 Seen ✓ Applied 4d ago

Sign up for suggestions tailored to the jobs you open and the searches you save.

Apply now
🤖

Whoa — hold up

JobsRadar was built for real people having a rough time in their job search — not for automated requests. You're clicking way too fast and you're now temporarily blocked.

Come back later. If you're genuinely job hunting, we've got your back — just act like a human.

Catch your next role the second it’s posted.

Create a free account and we’ll watch the boards for you — the instant a job matches your search, it lands in your inbox or Telegram. No digging, no refreshing.

Create free account

Free forever · takes 30 seconds · already have one?

Get the worldwide-remote edge.

Join our Telegram channel for the stuff that helps you land the role — salary benchmarks, the weekly market pulse, and new-feature drops. No spam, just signal.

Join the channel — it's free