About us

Join one of the UK’s fastest growing and award-winning banks.

We are a team of ambitious, passionate, hardworking, and committed people who have successfully created and launched one of the UK’s newest specialist property finance banks. As we embark on an exciting journey of growth, we are seeking exceptional new team members who possess both the ambition and drive to contribute to our vision. At GB Bank, we believe that career progression should not only be achievable but accelerated, enabling our employees to reach their potential in a supportive and dynamic atmosphere.

Our environment is fast-paced and collaborative, where your efforts are recognised, rewarded, and make a tangible impact. We take pride in fostering and open and inclusive culture that not only embraces change but also encourages continuous learning and professional development.

In this role, you will:

The Data Protection Officer will act as the organisation’s independent expert on data protection matters, advising leadership and staff on their legal obligations and best practices. They will oversee the organisation’s approach to data privacy, ensure risks are managed effectively, and serve as the primary contact for regulators and data subjects. The role is fractional as it may require a high initial commitment to improve upon the existing state, but may subsequently require reduced commitment.

Key areas of responsibility:

• Monitor and ensure compliance with data protection legislation, policies, and procedures.

• Advise management on privacy risks, legal requirements, and emerging regulatory developments.

• Lead or support Data Protection Impact Assessments (DPIAs) for high-risk projects.

• Maintain records of processing activities (ROPA) and oversee data protection documentation.

• Manage data breach responses, including investigations and notifications where required.

• Act as the main point of contact with supervisory authorities.

• Handle data subject requests (e.g., access, erasure, correction).

• Promote awareness of data protection through training and guidance.

• Embed “privacy by design and by default” into new systems, projects, and processes.

A bit about you – You are/have:

• Experienced in guiding growing organisations on practical conformance to GDPR and data protection law.

• Some practical awareness of modern cloud technology and how it is used to protect data

• Awareness of the requirements of ISO27001 and experience in assisting corporate accreditation to this standard

• Able to communicate legal considerations to all audiences.

• Confident working independently and influencing senior stakeholders.

• Ethical, impartial, and committed to high professional standards.

• Proven experience in a DPO, privacy, compliance, or legal role.

• Strong knowledge of GDPR and data protection principles.

• Experience with DPIAs, data breach management, or privacy governance.

• Relevant certification (e.g., CIPP/E, CIPM, or equivalent) is an advantage.

What else do I need to know?

• Location: London-based (4+ days in the office)

• Salary: Competetive

• Hours: 35 Hours per week

We are an equal opportunities employer and positively encourage applications from suitably qualified and eligible candidates, regardless of their age, sex, race, disability, sexual orientation, gender reassignment, religion or belief, marital/civil partnership status, or pregnancy and maternity.

At GB Bank, we value privacy and data protection rights. We have longstanding data protection culture and promote robust ethical standards in data management. Please read our Privacy Notice in relation to our recruitment activities before submitting your application to work with us.