Data Protection Officer - PostNord Strålfors AB

PostNord Strålfors develops and offers communication solutions that give companies opportunities for personal and strong customer relationships. PostNord Strålfors is an important part of society's communication infrastructure and annually handles over one billion communication messages and invoices for its customers in the Nordic region. PostNord Strålfors is part of the PostNord Group, the leading communications and logistics group in the Nordics. PostNord Strålfors has operations in four countries and has around 700 employees and a turnover of just over 2,2 billion (2023).

Do you want to be part of and create an impression in a digital transformation in a Nordic technical communication company by working with compliance initiatives? If so, you should keep reading!

About the role

In the role of DPO, your main responsibility will be to drive, lead, maintain and follow up Strålfors’ Nordic GDPR work and governance. This includes setting the Nordic level of ambition in collaboration with the management team.                                                                                       

The role entails full responsibility as DPO for Strålfors. As DPO you will be involved as an expert and advise on the implementation of new processes, services and ways of working as well as advise on when a Data Protection Impact Assessment (DPIA) needs to be carried out and how it should be carried out

Areas of responsibilities

  • Monitor compliance of Strålfors with all legislation that relates to data protection, including awareness-raising, training of staff involved in processing and related audits, and report any deficiencies to highest management.                                                                                           
  • Advice Strålfors management and employees that process personal data on their duties and other relevant information.                                                                                                                                                                                                                                                               
  • Advice Strålfors on carrying out data protection impact assessments (DPIA) as well as monitor their performance.                                                                                                           
  • Act as contact point for requests from individuals regarding the processing of their personal data by Strålfors Cooperate, consult and act as contact point for the data protection authority (DPA) regarding processing of personal data by Strålfors and, where appropriate, any other matter.                                                                                                                           
  • To perform his or her tasks according to a risk-based approach (risk associated with the processing operations, taking into account the nature, scope, context and purposes of processing). 

 

Main working activities

  • Drive, lead, maintain and follow up Strålfors Nordic GDPR work and Framework           
  • Drive and set Nordic ambition of level Awareness on GDPR obligations, acting as the point of contact for questions related to GDPR and performing GDPR trainings.                               
  • Point of contact for the applicable Data Protection Authority Support the organisation in maintaining the register of processing activities (ROPA)                                                             
  • Reports quarterly to the CEO on Strålfors compliance with laws, regulations and internal policies and procedures                                                                                                               
  • Advises and consults on when a Data Protection Impact Assessment (DPIA) needs to be performed and how it should be performed.                                                                              
  • First contact point for the business for questions related to data processing agreements and GDPR related texts in terms and conditions for services.                                                            
  • Responsible to monitoring that the company follow and comply to national laws, standards and internal decided procedures 

Your team

You will belong to the Responsible Business team together with three talented colleagues who have the same passion as you, to make things better. The team is responsible for developing, maintaining and complying with sustainability, quality and security including information security and privacy in PostNord Strålfors, which covers Norway, Sweden, Finland and Denmark. We have individual responsibilities but work closely together as each of our areas have dependencies.

About you

If you can say yes to being structural, ambitious, commercial and positive – then you could be the person we are looking for. We are looking for a person who wants to make a difference and who believes that compliance and the protection of personal data is an absolute business imperative. We believe that you are a self-motivated person with a structured way of working. You are used to taking responsibility with the ability to work both in a team and independently. At Strålfors, we encourage ABC self-leadership by being responsible (Accountable), brave (Brave) and committed (Committed) and these are qualities that we live by and value.

Competece requirements

  • Master Sc. degree in a relevant area and/or at least 3-5 years practical experience Proven success in driving large and complex projects
  • At least 5 years documented knowledge in working with Information Security, GDPR and/or Legal 
  • Working and assessing Risk Assessments
  • Working and assessment of personal data/DPIA Proven knowledge in implementing, develop and maintain laws, standards and procedures
  • Lead auditor experience
  • Good knowledge in MS Office
  • Good knowledge in training and performing training
  • Fluent in English, both written and spoken Independent, self-starting with structured working approach, and a high integrity 
  • Used to take responsibility with an ability to work both in teams and independent 

We offer you

A full-time job, working to create a better company and working with great colleagues.

Location

Our office in Stockholm, Oslo, Helsinki and Copenhagen. Possibility to work partly remotely.

Apply

This recruitment is handled by Head Agent. Please apply here: Data Protection Officer – Head Agent