Data Protection Officer, VEON Ltd, Amsterdam

The DPO will have to:

  1. Determine and lead the GDPR compliance program for the business and functions domiciled in the EU. For that you will be a leading member of a multi-functional Privacy Committee to set the privacy strategy and manage the governance framework of data usage at HQ level and for the digital business. You will provide periodic reporting to the Group Executive Committee and relevant privacy leads and senior management;
  2. Ensure proper implementation of the GDPR and its essential elements (such as the principles of data processing, data subjects’ rights, data protection by design and by default, audits, notification, communication of data breaches;
  3. Establish a framework for monitoring compliance with GDPR by VEON Group business and functions domiciled in the EU. Inform, and together with Legal Privacy, advise and issue recommendations to the VEON Group and its employees regarding their obligations and compliance under the GDPR;
  4. Work with the Legal function to develop the relevant data and privacy policies and standards for the Data Protection Impact Assessments (DPIA) of VEON group and monitor their performance (including whether and how to carry out a DPIA, what safeguards to apply to mitigate any risks to the rights and interests of the data subjects, and whether the DPIA has been correctly carried out);
  5. Identify and manage risks related to data protection, and escalate data protection risks and issues to executives, as needed;
  6. Act as the point person for the supervisory authority (the Dutch data protection authority) on issues and complaint relating to processing of personal data. Develop trustworthy relationships with all relevant data protection authorities inside and outside of the EEA;
  7. Ensure the implementation and monitoring of a worldwide data protection strategy and the creation and roll-out of policies, guidelines, data protection awareness-raising and training of staff involved in processing operations within the VEON group.


The candidate should also have:

  • Deep knowledge and understanding in the field of data privacy and data protection in the EU and also have a good understanding of other major privacy frameworks, show commitment to stay current and the ability to identify business impact points and advise appropriately and in a timely manner;
  • At least 10 years’ experience in a compliance legal, data protection and/or privacy role preferred;
  • Sufficient level of understanding of IT and data management systems, to ensure proper security systems are in place;
  • Skills in change management, project management, experience in policy development and training, knowledge of information systems;
  • Sound experience in teamwork and in the management of complex and transversal issues;
  • Excellent communication skills and ability to interact, advocate and influence at senior level and executive board level individuals, both within the VEON HQ function but also within local VEON entities across the world;
  • Highly developed sense of cultural awareness to be able to build strong relationships across all local VEON entities across the world;
  • Possess integrity, professional ethics, and sound judgement in managing risks and enforcing company-wide standards;
  • Demonstrated leadership and problem-solving skills, and ability to work under pressure;
  • Ability to think strategically and tactically about a range of data privacy and data protection issues, then deliver and execute on that plan;
  • Excellent verbal and written communication skills with strong presentation / negotiation skills;
  • CIPP(E) (Certified Information Privacy Professional (Europe)) preferred. A second language (ideally Dutch, Italian, or Russia) would be advantageous.
  • Experience in a regulated industry such as telecoms, insurance, finance or directly within a data protection authority preferred.

Application Submission Information: