Global Privacy & Compliance Specialist

About Everway

At Everway (formerly n2y/Texthelp), our goal is to lead the world in Neurotechnology software, helping transform the way we understand and are understood. We’re a global community of over 500 team members spanning seven countries, including the UK, USA, Norway, Denmark, Sweden, Australia, and New Zealand. By understanding and addressing the unique needs of each individual, we’re creating a world where differences are recognized and valued. A world where everyone can thrive. We can only achieve our goals and continue to grow by having high performing people in our team, people who share our goals and are passionate about our mission. We pride ourselves on our core values that are embedded within our culture. These are to be curious, have courage, and commit fully. Join us at Everway – together, we can unlock the full potential of every mind.

Job Summary

The individual will have responsibility supporting the Head of Compliance to deliver the GDPR workstream of the compliance roadmap. They will monitor adherence to our legal obligations and support the development of content for a global training and communication programme and monitor privacy risks across the business. The individual will operate in a team providing global coverage across the wide variety of products and services that the company offers in a fast paced and dynamic environment. Additionally as the company sets to grow across a number of jurisdictions, so will the data privacy landscape, which will continue to be complex and ever evolving, encompassing GDPR requirements as well as local privacy laws and regulations.

Key Responsibilities

• Supporting the Head of Compliance, to implement and deliver the privacy workstream of the compliance roadmap, ensuring the company meets its legal, regulatory and reputational responsibilities.
• Support and at times lead on specific workstreams within the Compliance roadmap, business improvement projects/initiatives, for example data mapping, risk management, controls testing and policy development.
• Manage Data Subject Access Requests and Data Deletion Requests, ensuring a robust process is in place to address requests, working with system owners, development teams, product owners, technical teams, assuring the quality and timeliness of responses, and as applicable seek authorisation from data controllers to process all DSAR and data deletion requests.
• To be responsible for providing responses to privacy related questions from customer vendor security requests, and supporting the update of the company’s Knowledge base and development of a Trust Centre.
• Undertake Data Privacy Impact Assessments on our products and systems, monitoring and tracking of assessments.
• Support the team in partnership with the functional areas to conduct analysis of the key personal data processing within their areas, including documentation of data flows, data jurisdictions, sub processors, Data Processing Agreements, processes and procedures.