Privacy Risk Manager - Retail



Are you able to provide valuable insights to their management on how they manage their risks related to privacy? Do you have a specific interest in privacy and are you an organized and pragmatic professional with a hands-on mentality? As Action is now looking for a Privacy Risk Manager, it is the perfect time to join their Risk Assurance team!

Job description

The Privacy Risk Manager actively directs the management of privacy risks for their business teams. The Privacy Risk Manager works in close cooperation with direct colleagues specialised in other forms of risk management such as information security, compliance, integrity and financial reporting. In this role you report into the Director Risk Assurance.

As Privacy Risk Manager, you:

  • Develop, periodically review and update privacy as well on strategical as on tactical level, setting clear guidance to assist senior management to comply with these requirements and manage the associated risks on an ongoing basis.
  • Act as an independent review and evaluation body to ensure data protection issues within the organization are being appropriately evaluated, investigated and resolved. You closely align with the Director Risk Assurance in the communication of incidents when they should be notified to enforcement agencies, including the Data Protection Authority, or impacted individuals involved and direct successful incident management including engagement of key stakeholders.
  • You execute Risk Assessments not only about privacy but also assessments such as Group Risk Assessments, Country Risk Assessments, Information Security Risk Assessments and Compliance Risk Assessments.
  • Advise (senior) management on request or on own initiative on enhancements and prioritization of risks and controls for executing business processes and new initiatives. You provide input for the design and implementation of controls, also incorporating privacy requirements in accordance with applicable laws and regulations.
  • You design and deliver privacy risk and control awareness activities such as e-learnings, trainings and phishing simulations.
  • You support our business teams through a well-designed technology for our privacy administration (OneTrust) and you actively promote the use of this technology.
  • Discuss Privacy Risk and Control performance of our business teams with the Director Risk Assurance and present sections of the reports to the Risk and Compliance Committee and Executive Board reporting.

Meet your team

Risk Assurance supports the Action business teams by identifying risks and defining and implementing measures to mitigate these risks. Our activities span the entire value chain, from product acquisition to product sales in our stores, across all countries of operation. Our Risk Management, Fraud and Store Security and Internal Audit teams, each composed of diverse specialists, provide us with all the in-house knowledge we need to support the Action’s business teams achieving their ambitions. Do you want to work in a highly dynamic retail organisation, a recently established department with a wealth of (international) growth opportunities? Take Action!


As a Privacy Risk Manager, you are proactive and execute with pace and urgency. You have excellent communication skills and know how to manage your stakeholders. You can translate risks in an easy to understand advice to the business teams.

Further you have a(n);

  • Economic grade, WO level (master degree), e.g. with a completed post master education for RE;
  • Experience of at least 8 years in the domain of Risk Management, with at least a substantial number of years in Information Security Management, Business Continuity and/or Privacy Management;
  • Solid understanding of Corporate Governance and Internal Control standards (van Manen, COSO, COBIT, ITIL, ISO27001, ISO27002, ISO22301, BS25999);
  • Solid understanding of relevant Data Protection laws and regulations (GDPR);
  • Knowledge of and experience in documentation systems for processes, risks and controls (BWise preferred);
  • Preferred experience in the retail sector;
  • Fluency in English (speaking and writing), fluency in French and German preferred.

Company description

Action is Europe’s major retail success story. We grew from a single store in Enkhuizen into an international retail organisation in the space of 26 years, with over 1,600 stores in 8 countries and an annual revenue of EUR 5 billion (2019).

Impressive numbers, but what really matters to us is people. Our customers, whom we want to offer value for their money. Whether they are bargain hunters or treasure hunters; with our surprising value-for-money products and low prices, we always manage to surprise them. And our employees, who work hard every day to make a success of our company and themselves. Over 50,000 people have opted for a career with Action; are you next?






Matthijs Lemaire

Privacy Risk Manager - Retail
Perenmarkt 15, Zwaagdijk-Oost
Match criteria
Gewenst aantal uren
  • 36 - 40 uur
  • Risk Management
  • Privacy
  • WO
  • Post Doc RE
  • Retail