Data Protection Officer


In this context, as a Data Protection Correspondent (DPC), your missions will involve to:

  • Roll-out the Group data protection compliance program to ensure compliance locally and reporting on the progression’s status
  • Deploy a local roadmap of compliance in order to meet both Group objectives and cover potential local identified gaps
  • Support deployment of Group data protection tools (notably One Trust) at local level
  • Support local teams with the Group projects deployed locally, notably by ensuring proper adaptation regarding local legislation
  • Ensure a local adaptation of Group documentation (policies and procedure, etc.)
  • Act as a key Business Units’ point of contact on data protection topics for the Group
  • Supporting local teams with data protection compliance of any local project (privacy by design) and ensure compliance over time
  • Prepare and update local data protection documentation (Information notices, Data Processing Agreements, consent forms, policies and procedures, etc.) and perform privacy impact assessments, legitimate interest assessments and risk analysis, where necessary
  • Fill in and maintain up to date the inventory of personal data processing activities (One Trust)
  • Manage data subjects’ requests in collaboration with local teams
  • Participate in negotiation of Data Processing Agreements with corporate clients and providers
  • Conduct awareness sessions on a regular basis and yearly training sessions
  • Coordinate, in collaboration with IT, the management of potential incidents involving personal data within the framework of policies and procedures defined at Group level
  • Act as a point of contact for local regulators and coordinate with the Group
  • Monitor the evolution of regulations and standards in terms of data protection (specific to the area of action).


  • University degree – Legal
  • Qualified in new technology law and/or certification in personal data protection
  • At least full time three years’ experience in a position highly exposed to personal data protection issues in a law firm, an international company, or a Data Protection Authority
  • In-depth knowledge of regulations relating to personal data (in particular the GDPR) and their application
  • Working experience with technological topics. Knowledge of the context and issues related to Edenred’s business sector. Experience in the field of payments, new technologies, or in a regulatory environment would be a plus
  • Flexibility. Ability to manage projects in collaboration with others, and to work in a very international environment with teams with very varied expertise and profiles
  • Strong skills required in written and oral communication, and coordination
  • Autonomy and responsiveness. Ability to identify and measure risks, prioritize actions, and make recommendations adapted to the context
  • Results oriented. Ability to facilitate corporate decision-making
  • Fluent English (both written and oral) allowing you to interact daily with teams located abroad. Other languages (particularly those related to the scope of action) highly appreciated.