Senior Data Governance, Privacy & Operations Manager

Location: Waterloo - Hybrid Working
Full Time
Permanent
Grade 5

At Currys we’re united by one passion: to help everyone enjoy amazing technology. As the UK’s best‑known retailer of tech, we’re proud of the service our customers receive – and it’s all down to our team of 25,000 caring and committed colleagues. Working as one team, we learn and grow together, celebrating the big and small moments that make every day amazing.

The Senior Data Governance, Privacy & Operations Manager will be responsible for leading our overall data governance agenda, including delivering data governance requirements through cross‑functional collaboration, promoting data as an asset and driving policy. This key role will also lead the team providing end‑to‑end data privacy assurance and execution of ongoing data operations. The role will require close partnerships with the Data Protection Office and Information Security teams.

• 
  
• Lead the Data Governance Initiative, Accountability Framework and all related risk‑reduction initiatives.
  
• Provide line management and support for Data Governance, Privacy Assurance and Data Operations.
  
• Report KPI across the team.
  
• Own and review policies, and oversee policy management, configuration and operation of data governance and scanning tools including One Trust, Microsoft Purview and Ground Labs.
  
• Partner with cross‑functional teams to embed data protection compliance and privacy risk management across the organization.
  
• Conduct comprehensive data protection risk, legitimate interest and transfer impact assessments.
  
• Advise on data protection clauses in contractual negotiations with third parties, and provide guidance to in‑house counsel where appropriate.
  
• Review assurance documentation, including pre‑screens, LIAs and DPIAs.
  
• Support maintenance of the company‑wide Record of Processing Activities, working with Data Owners and Stewards.
  
• Provide SME support to the business in agreeing remediation actions for key risks and issues.
  
• Collaborate with L&D to oversee and drive training completion across the UK&I business and third parties.
  
• Embed a culture of responsible use of data as an asset across the company.
  
• Oversee, monitor and drive the adoption and embedding of data governance requirements and data lifecycle management across systems and processes.
  
• Monitor accountability for data governance in the UK&I business, ensuring evidence of a clear line of accountability to the Board.
  
• Manage Microsoft Purview and Ground Labs for data access, classification, compliance, retention and loss prevention.
  
• Produce and maintain a company‑wide Business Data Glossary and Data Lineage.
  
• Manage the One Trust software and relationship with One Trust.
  
• Support development of data use with Customer Insight, Marketing and IT teams.
  
• Serve as data incident liaison, supporting investigation, trend monitoring and mitigation action plans with internal stakeholders.
  
• Support the completion of Data Subject Rights Requests within required timeframes.
  

• 
  
• Extensive experience of privacy regulations – EU GDPR, PECR, DPA 2018.
  
• 5+ years of proven experience analysing, assessing and advising on risk and impact, and investigating incidents from a UK and European privacy and data protection perspective.
  
• 5+ years’ experience determining options for handling personal data, often in the absence of previous regulatory interpretation or operational examples, being comfortable with ambiguity.
  
• 5+ years’ experience advising on multiple complex projects in parallel, prioritising and working alongside cross‑functional teams while balancing commercial requirements.
  
• Commercially aware specialist capable of applying regulatory principles and frameworks to complex commercial and operational arrangements.
  
• Ability to independently, quickly and accurately assess legal, practical and business risks in a fast‑paced environment and make sound judgments.
  
• Experience working with third‑party stakeholders (business partners, suppliers, service providers and IT product vendors).
  
• Experience with privacy tools, preferably One Trust.
  

Join our team and we’ll be with you every step of the way, helping you develop the career you want with new opportunities, ongoing training and skills for life. Not only can you shape your own future, but you can help take charge of ours too. As the biggest recycler and repairer of tech in the UK, we’re in a position to make a real impact on people and the planet.

Every voice has a space at our table and we’re committed to making inclusion and diversity part of everything we do, including how we strengthen our workforce. We want to make sure you have a fair opportunity to show us your talents during our application process, so if you need any additional assistance with your application please email and we’ll do our best to help.