**Responsibilities:** - Provide legal advice and recommendations for the implementation of privacy projects following internal audits in the banking sector. - Operate within the first line of defense (Risk Control team) and the second line of defense (DPO and Compliance team). - Review contracts, particularly Data Processing Agreements (DPAs) and Standard Contractual Clauses (SCCs). - Assist in responding to data subject requests, including access, rectification, and erasure requests. - Update and maintain the Record of Processing Activities (RoPA). - Ensure and monitor internal compliance with data protection regulations. - Support the implementation of policies and procedures related to privacy and data protection. - Provide guidance to project teams for the integration of Binding Corporate Rules (BCRs). - Collaborate with teams to conduct Data Protection Impact Assessments (DPIAs) for new projects and initiatives, identifying and mitigating privacy risks. - Assist the DPO and work alongside internal stakeholders to contain, recover, and respond to data breaches and cybersecurity incidents. - Liaise with supervisory authorities on data protection matters. - Prepare and deliver internal training sessions on data privacy and security. - Collaborate on reviewing and assessing system designs to ensure adherence to data privacy and security requirements, including the implementation of personal data retention and deletion processes. - Work with third-party providers to manage cooperative engagement plans, deadlines, and material requests related to privacy and cybersecurity assessments, including oversight of international data transfers (SCCs). ---