Group Data Protection Officer (DPO)




Years of experience

Apply now

newcleo is a clean and safe nuclear technology company. Privately funded and headquartered in London, UK, newcleo was launched in 2021 to be a disruptor in the field of nuclear energy. Its mission is to generate safe, clean, economic and inexhaustible energy for the world, through a radically innovative combination of existing, accessible technologies.

newcleo is building the next generation system with the goals to:

  1. eliminate the need for geological repositories by using a fast neutron flux avoiding the production of long life radioactive elements;
  2. accelerate the development of new fuel cycles, including MOX (Mixed Pu-U Oxides) and eventually thorium, that provide clean, safe and inexhaustible energy from nuclei and the opportunity to burn the long-lived nuclear waste produced by the old generation of nuclear reactors;
  3. ultimately develop an Accelerator Driven System (ADS), based on the intrinsically safe coupling of a particle accelerator and a sub-critical reactor.

With visionary co-founders, newcleo brings together an international team of senior engineers with deep knowledge of nuclear energy and new recruits with a fresh mindset, working to develop designs based on innovative Lead-cooled Fast Reactors (LFRs). These LFRs will meet the commercial demand for small terrestrial waste-to-energy reactors.

In the UK, newcleo’s immediate focus is on delivering a prototype 30MWe LFR by 2030 followed by an initial battery of 4-6 x 200MWe reactors with deployment in the early 2030s. We are building our team to meet this challenging and exciting objective.

newcleo wants to be the first step toward the evolution of its industry to become fully respectful of people and the environment. To develop a new, sustainable, and completely safe way of generating nuclear energy that will lead humanity to zero emissions, and to the mitigation of global warming.

Reports to (Job Title):

Chief Financial Officer

Job Description

As newcleo Data Protection Officer (DPO) you will be appointed to monitor internal compliance on data protection obligations and act as a point of contact for the supervisory authority and data subjects. The DPO will be required to ensure the organisations processes of personal data of its, employees, contractors and workers or any other individual is compliant with the appliable data protection regulations.

The role will be a group role and the appointed DPO will be required to ensure compliance both in the EU and UK regulatory and supervisory authorities such as the Information Commissioner’s Office (ICO) and European Data Protection Supervisor (EDPS).

You must be prepared to work in a fast-paced environment and possess the ability to be completely flexible in all/many different situations that may arise. The DPO will hold accountability and be the organisations representative for all compliance with data regulation authorities.

As the Group DPO you will need to be self-motivated and have the ability work on your own initiative, solution-oriented and have the ability to build processes and procedures relating to data protection regulations from scratch with the relevant departments across the business.

Main Activities

  • You will be required and will hold accountability to serve as the main point of contact for DPO duties such as:
  • Data breach support and response (including but not limited to liaison with the ICO)
  • Breach response
  • Data subject access request support (SAR)
  • Drafting policy and procedure in line with UK and EU GDPR regulations
  • Data mapping support and advice
  • Ability to compile Data Protection Impact Assessments (DPIAs)
  • Support the Security Manager with GDPR compliance and information security awareness training
  • The DPO is responsible in for ensuring the controllers and data subjects are well informed about their data protection rights, obligations and responsibilities
  • Support with raising awareness of data protection regulations in partnership with relevant departments (HR, IT, Communications)
  • Give advice and provide corrective action and recommendations to the organisation about the interpretation or application of data protection regulations
  • Create processes and procedures to processing operations within the organisation and notifying or presenting to EDPS any specific risks (or prior checks as required)
  • To be held accountable in the organisation for data protection compliance
  • Handle queries or complaints on request by either the organisation, the controller, or data subject
  • Work in partnership with EDPS (responding to any investigations, complaint handling, inspections conducted by EDPS etc.)
  • Draw the organisations attention to any non-compliance or failures to comply with the applicable data protection rules.
  • You will have worked as DPO since May 2018 and have expert knowledge in EU regulation prior to UK exit from EU OR BREXIT – need to be consistent [see further down]

Experience / Professional requirements

  • Expert knowledge of data protection legislation
  • Minimum of 4 years’ experience as DPO (essential knowledge of EU regulations prior to BREXIT)
  • Expert knowledge of reporting data breach to ICO and relevant data protection regulatory bodies both in EU and UK
  • Proficient in English (French and Italian are desirable)
  • Ability to work proactively
  • Flexibility (location, travel, hours) is expected for this role


Apply now

Share this job opening