Opel Bank S.A. Niederlassung Deutschland

Data Protection Manager (m/f/d) – Germany, Austria, Switzerland

am Standort: Potsdam

Vollzeit Mit Berufserfahrung Aktuell

Opel Vauxhall Finance’s vision is to meet the mobility needs of our customers through financial services solutions for the Opel and Vauxhall brands. Our Strategic Priorities focus on the development of our people, performance delivery, penetration, efficiency, customer loyalty and protection - maintaining strong risk management and compliance practices. We promote a collaborative culture of people who actively contribute with integrity. We are agile, open minded and adaptive to deliver at pace, with customers at the heart of all we do.

Data Protection Manager (m/f/d) – Germany, Austria, Switzerland

Position Objectives & Responsibilities

The Data Protection Manager will be responsible for demonstrating a thorough understanding of the regulatory environment in which the business operates and promoting a strong culture of data protection compliance across the relevant businesses within the organization. The Data Protection Manager will drive the further development, management and maintenance of the organizational-wide Data Protection framework in Germany, Austria and Switzerland; establishing and implementing appropriate controls and mitigating DP risks for the organization. The Data Protection Manager will also support the Group Privacy Officer and the Data Protection team in advising the various businesses within the organization on DP management, including providing guidance and approval for emerging business initiatives, guidance with DP related policies for the business; and overall Data Protection related matters.


Knowledge & Education:

  • Develop and maintain a thorough and complete understanding in which the business operates and the resulting Data Protection risks associated with the business and activities 
  • Stay informed and ahead of new and emerging risks from business and Data Protection related developments and support the assessment of their impact on the organizational-wide Data Protection Program 
  • Enhance and maintain current knowledge of GDPR and of applicable local Data Protection related laws, rules, regulations, guidance to support the promotion to organizational adaptation and compliance regarding Data Protection 
  • Stay informed of industry and regulatory GDPR related developments, trends and issues 


Further Development & Execution:

  • Perform independent, risk-based Data Protection risk assessments; manage the assessment process and support implementation of appropriate action plans to remediate any gaps 
  • Serve as subject matter expert to the business and support the Head of Data Protection in acting as a resource and advisor as required 
  • Manage matters relating to data breaches 
  • Manage matters relating to data subject rights and Data Protection complaints 
  • Review and advise on DPIA’s 
  • Manage Data Protection requirements of the Vendor Management process for third parties 
  • Manage oversight and support maintenance of the OVF Record of Processing Activities (ROPA), to understand where and how OVF processes personal data, including assessment of lawfulness, its accounting of the processes, systems, databases and third parties involved with processing personal data 
  • Participate in projects and efforts, as required. Provide project management support and assist with key strategic projects and regulatory change initiatives as needed 
  • Manage the implementation, enhancement, maintenance and performance of a Data Protection Control Framework 
  • Develop and maintain Data Protection related policies, procedures and training materials 
  • Manage the execution of Data Protection training and awareness activities 
  • Provide a monthly DP reporting as well as a regular Management reporting including participation on relevant committees 
  • Develop and maintain a sound understanding of internal business products and processes 


Within a formal appointment as Data Protection Officer (DPO) pursuant Art. 39 General Data Protection Regulation (GDPR):

  • To inform and advise the controller or processor and the employees who carry out processing of their obligations pursuant to this regulation and to other local data protection provisions 
  • To monitor compliance with this regulation and other local data protection provisions and with the policies of the controller or processor in relation to the protection of personal data, including the assignment of responsibilities, awareness-raising and training of staff involved in processing operations, and the related audits 
  • To provide advice when requested as regards the data protection impact assessment and monitor its performance pursuant to Art. 35 
  • To cooperate with the supervisory authority 
  • To act as the contact point for the supervisory authority on issues relating to processing, including the prior consultation referred to in Art. 36, and to consult, where appropriate, with regard to any other matter 

Qualifications & Experience

  • Bachelor’s or Master’s degree in Law or Economics/IT or related field required 
  • Sound knowledge of the General Data Protection Regulation (GDPR) and other (local) Data Protection related Laws and Regulations 
  • Data Protection related experience as Data Protection Officer or within similar roles 
  • Fundamental knowledge and understanding about IT systems, IT security standards, interfaces and encryption standards 
  • Data Protection related certification preferred 
  • Project Management experience preferred 


Skills & Knowledge

  • Proficient in full suite of Microsoft Office applications, especially Excel and PowerPoint 
  • Demonstrated experience with Data Protection risk management, including risk identification, evaluation, mitigation and management 
  • Experience regarding the development of Data Protection management systems; Data Protection control framework development and execution 
  • Demonstrates ability to prioritize workload individually, balance multiple cross-functional duties and drive deadlines in a consistent manner 
  • Ability to navigate within a matrix environment and execute for multiple stakeholders 
  • Ability to provide presentations, reviews, discussions from Data Protection topics to all relevant stakeholders including senior management 
  • Strong analytical and data interpretation skills including the ability to create, review, interpret and present data in a concise and precise manner 
  • Strong interpersonal and communication skills, both oral and written; with excellent attention to detail 
  • Ability to support interaction with regulators effectively including managing active discussions and negotiations, and operating under stringent expectations and deadlines 
  • General knowledge of financial services/automotive industry preferred


  • Excellent comprehension, verbal and written skills in German and English 
  • Additional language a plus 

What we offer

A friendly working atmosphere characterized by trust, respect and fairness varied and interesting challenges in a future-oriented and international environment characterized by committed cooperation, an open-minded and modern working environment and a vibrant European community, in addition: free drinks (water and coffee) and fresh fruit, employee leasing, contributions to pension schemes


Then apply now! Send us your detailed application documents via our job portal. Our team will be happy to answer any questions you may have. We look forward to getting to know you!


Opel Bank S.A. Niederlassung Deutschland
Zeppelinstraße 48A 
14471 Potsdam

Bitte beziehen Sie sich bei Ihrer Bewerbung auf LTO