GDPR Trainer

About us

The Mandatory Training Group is the leading UK provider of accredited courses and Ofqual approved qualifications, including statutory and mandatory training, health and safety, food safety, first aid, safeguarding adults and children, equality and diversity, MS Office, IT and cybersecurity, soft skills, leadership and management.

Based from home, working in your geographical region remotely delivering training on the employers’ premises and other dispersed environments.

Roles and responsibilities

GDPR responsibilities include:

  • To support Individual’s Rights in response to Data Subject Access Requests
  • To support the Incident Response Team by collaborating with the information security team, advising on organisational and technical measures required to safeguard data, incident response policies and processes, addressing suspected or actual data privacy and security incidents and advising on the appropriate containment, investigation and remediation of any breaches, notification and regulatory reporting requirements, and communications
  • To support data protection related enquiries
  • To support ad-hoc compliance related tasks
  • To assist with PCI DSS compliance gap analysis and formal compliance assessments
  • To maintain the PCI DSS asset register
  • To maintain compliance metrics and assist with internal and external reporting
  • To maintain the group compliance calendar, including scheduling QSA resources
  • To travel to different sites to engage with stakeholders and undertake compliance assessments
  • To familiarise and stay up-to-date with PCI DSS
  • To familiarise and stay up-to-date with the payment industry and wider Info Sec risks and threats
  • To engage and build relationships with stakeholders, technical, operational, internal and external.


Essential requirements

Mandatory requirements:

  • Solid understanding of applicable European and Global Privacy laws and regulations
  • Privacy experience at an in-house team
  • Experience advising business partners on privacy risk assessment and mitigation across digital products and new technology
  • Passion for and understanding of technology, and data processing activities
  • Experience working within a global team
  • Experience working collaboratively with cross-functional teams to get the job done
  • Able to communicate effectively and credibly
  • Ability to assess legal, practical and business risks in a fast-paced environment and provide sound advice under tight deadlines
  • Ability to establish the next step, or seek advice to find out
  • Ability to interpret complex data analysis and present to the business in support of compliance projects
  • Prior experience working with digital technology required
  • Experienced in producing and implementing data privacy and compliance governance structures in a global organisation
  • Key strategies for protecting cardholder data
  • Knows how to build relationships and influence stakeholders
  • Awareness of core InfoSec controls in a commercial environment
  • Relevant experience and knowledge of ISO27001 and the General Data Protection Regulation (GDPR)
  • Training/teaching and assessing qualification
  • PTLLS/Award in Education and Training (AET) qualification
  • Current Disclosure and Barring Service (DBS)
  • Experience in the delivery of Ofqual approved qualifications desirable
  • Evidence of continuing professional development. 


Skills, knowledge and experience

  • Presentation skills
  • Facilitation skills
  • Public speaking
  • Microsoft Office.