We have an exciting, permanent opportunity for a Risk & Compliance Consultant / Data Rights Manager to join our Risk Advisory Team based at any of our 11 UK offices (hybrid working).
As a Data Rights Manager, you will play a central role in ensuring our clients meet their legal and ethical obligations when responding to data subject rights (DSR) requests. Working within a fast paced, client-facing data privacy consultancy, you will coordinate, manage, and enhance end to end processes for handling rights requests under GDPR, UK GDPR, and global privacy frameworks. This is a hands-on operational and advisory role, requiring strong privacy knowledge, excellent communication skills, and the ability to manage multiple cases and stakeholders simultaneously.
A snapshot of your day:
Data Subject Rights (DSR) Management
Lead and manage the full lifecycle of data subject rights requests (e.g., access, erasure, rectification, objection, portability) on behalf of clients.
Conduct identity verification, scope clarification, and data discovery activities.
Coordinate with client stakeholders, IT teams, HR, marketing, and third‑party processors to collect relevant data.
Review, redact, and quality‑check disclosure packs to ensure accuracy and compliance.
Monitor and manage statutory deadlines, escalating risks early.
Client Support & Advisory
Act as a key point of contact for client DSR operations, providing guidance on rights interpretation and best practice.
Interlock with Client stakeholders e.g., IT, HR, Legal etc to advise and guide on process and any issues arising
On the Client behalf, interface with the ICO or other supervisory bodies to seek best advice and / or manage complaints and investigations on behalf of the Client
Translate regulatory requirements into clear, practical advice.
Support clients in designing and optimising rights management workflows and governance.
Provide ‘lessons learned’ and improvement feedback to the Client throughout the process
Compliance & Quality Assurance
Ensure DSR processes comply with GDPR/UK GDPR, Data Protection Act 2018, EDPB guidance, and emerging global privacy laws.
Maintain robust audit trails and documentation.
Identify case patterns, risks, and gaps and recommend process improvements.
Process Improvement & Tooling
Work with privacy consultants to enhance policies, procedures, templates, and work instructions.
Contribute to the implementation or optimisation of DSR management tools and case management systems.
Support knowledge base development and training materials.
Reporting & Insights
Prepare dashboards and reports for clients, highlighting volumes, trends, risks, and performance metrics.
Understand and communicate insight from data supplied by the ICO on complaints, investigations and tends
Training & Awareness
Deliver training and guidance to client teams on handling data rights, redaction, data discovery, and privacy literacy.
Promote consistent, compliant, and customer‑centric DSR handling practices.
Involvement in Privacy Practice
Support the wider team and Client base on other aspects of Data Privacy support e.g., breach and incident management, creation of DPIA’s, TRA’s, AI Assessments etc.
We would love to hear from you if you have:
- Previous experience in a similar role with excellent working knowledge of GDPR/UK GDPR and data subject rights obligations.
- Experience managing DSR requests in a consultancy, in-house privacy team, or legal environment.
- Excellent written communication and the ability to produce clear disclosure materials.
- Excellent organisational skills and the ability to manage multiple cases simultaneously.
- Experience with redaction tools and data discovery processes.
- Ability to navigate complex stakeholder environments calmly and professionally.
Desirable
- Professional privacy certification (e.g., CIPP/E, CIPM, BCS Data Protection).
- Experience in regulated industries such as financial services, healthcare, or technology
- Meticulous attention to detail, with high integrity and ethical judgement.
What's in it for you:
Competitive discretionary annual bonus.
Core benefits paid for by BW including life assurance, group income protection, private medical cover and 25 days holiday per year with holiday trading.
A generous pension scheme where we contribute 8% of your salary from day one of your employment.
Employee Assistance Programme to support you and your family through any concerns or challenges you may experience.
A comprehensive range of voluntary benefits to suit you (and your family) including an electric car leasing scheme, tech scheme, cycle to work scheme, dental cover, healthcare cash plan, health assessments, critical illness cover, extension of private medical cover or life assurance to family members, Sports Allowance – we pay up to 50% of your gym/sports membership (up to £50 pm), travel insurance, paid volunteering, and a broad range of discounts at hundreds of retailers including supermarkets, fitness centres, travel and leisure companies.
For a full list of benefits, please click here
Accessibility
We are a Disability Confident Employer. If you reasonable adjustments could support you, or if you would like more information on accessibility, please click here
Not quite the right opportunity for you this time?
For more about us and other Careers at BW, please click here
Follow Barnett Waddingham on LinkedIn
We kindly ask recruitment agencies to not send speculative CVs. Should we need assistance, we will reach out. All enquiries should be directed to [email protected].
