Job Specifications
As the UK’s favourite property platform, Rightmove aims to give everyone the belief that they can make their move. To help us achieve this, we’re looking for a Data Protection Officer (DPO) to join our team.
We build products powered by large-scale data insights. As we continue to grow, we are committed to protecting the privacy, security, and ethical use of data across all our platforms. We are seeking an experienced Data Protection Officer (DPO) to ensure compliance with UK data-protection laws and to support our organisation in delivering responsible, privacy-aware innovation.
What you’ll be doing
The DPO will lead and support our Data Privacy teams and oversee our data-protection compliance program, ensuring adherence to the UK GDPR, Data Protection Act 2018, DUAA and PECR, while also monitoring the implications of EU GDPR and AI Act for any cross-border operations. This role will work closely with legal, compliance, internal audit, engineering, product, security, HR, and commercial teams to embed privacy-by-design and maintain a strong culture of data stewardship.
Key Responsibilities
Regulatory Compliance
Serve as the primary contact point for the Information Commissioner’s Office (ICO).
Ensure compliance with UK GDPR, Data Protection Act 2018, DUAA and PECR, and monitor changes in the UK data-protection landscape.
Maintain up-to-date Records of Processing Activities (RoPA).
Lead and document Data Protection Impact Assessments (DPIAs), Legitimate Interest Assessments (LIAs) and Transfer Risk Assessments (TRAs)
Ensure robust processes for handling data subject rights (DSRs), including access, erasure, rectification, and objection.
Governance & Advisory
Develop, maintain, and implement the organisation’s data-protection strategy, policies, and internal controls.
Provide specialist advice on privacy-by-design, data minimisation, storage limitation, consent management, tracking technologies, cookie compliance and lawful bases for processing.
Work with Information Security to support security incident management and lead assessments of personal-data breaches, including ICO reporting where required.
Advise on vendor due diligence and data-processing agreements (DPAs).
Provide advice and guidance on data sharing agreements (DSAs) with partners and third parties.
Training & Culture
Design and deliver training, awareness campaigns, and resources to build privacy literacy across the organisation.
Champion a “privacy first” mindset throughout the business.
Reviewing and maintaining internal Data Protection policies.
Monitoring & Risk Management
Conduct regular assessments, audits, and reviews of compliance and operational practices.
Evaluate and monitor third-party processors’ compliance with data-protection obligations.
Provide regular reporting to senior leadership on privacy risks, incidents, and program maturity.
Undertake horizon scanning and reporting material changes.
Who you are
Required
Proven experience as a DPO, Privacy Manager, or equivalent role within a UK organisation—ideally within a tech-driven or data-rich environment.
Detailed understanding of UK GDPR, DPA 2018, DUAA, PECR, ICO guidance, and associated best practices.
Strong experience in DPIAs, risk assessments, audits, and implementing compliance frameworks.
Familiarity with technical and organisational security measures, SSDLC, data architecture, and modern data ecosystems.
Strong understanding of cookie compliance and tracking technologies.
Excellent communication skills, with the ability to translate legal requirements into practical business guidance.
Strong leadership and stakeholder management skills.
Experience in providing support and advice on AI technologies.
Preferred
Professional privacy certifications such as CIPP/E, CIPM, CIPT, BSC DPO, or similar.
Experience working with cloud platforms (AWS, GCP, Azure) and modern data tooling.
Experience supporting fast-growth tech environments or regulated industries.
Legal, information-security, or data-governance background.
What’s in it for you
People are the foundation of Rightmove – we’ll help you build a career on it.
Competitive compensation package.
Cash plan for dental, optical, and physio treatments.
Private Medical Insurance, Pension and Life Insurance, Employee Assistance Plan.
27 days holiday plus two (paid) volunteering days a year to give back, and holiday buy schemes.
Hybrid working pattern with 2 days in the office.
Contributory stakeholder pension.
Life assurance at 4x your basic salary to a spouse, family member other nominated person in your life.
Paid leave for maternity, paternity, adoption, and fertility.
Travel Loan, Bike to Work scheme, Rental Deposit Loan.
Charitable contributions through Payroll Giving and donation matching.
Access deals and discounts on things like travel, electronics, fashion, gym memberships, cinema discounts, and move.
Still not sure?
We want to be part of creating a more diverse, equitable, and inclusive workplace for al