The Office of the Information and Data Protection Commissioner (“IDPC”) is currently looking to recruit a Legal Counsel (full-time) to join their team.
About the IDPC
The IDPC is the national supervisory authority responsible for monitoring and enforcing the provisions of:
- the GDPR, as implemented into Maltese national law;
- the e-Privacy Directive, as transposed into Maltese national law;
- the Freedom of Information Act;
- the Re-Use of Public Sector Information Act.
The Office of the Information and Data Protection Commissioner (“IDPC”) is currently looking to recruit a Legal Counsel (full-time) to join its team.
About the IDPC
The IDPC is the national supervisory authority responsible for monitoring and enforcing the application of the:
· GDPR and the Data Protection Act, including its subsidiary legislation;
· Freedom of Information Act; and
· Re-Use of Public Sector Information Act.
The Legal Counsel will work within IDPC’s legal team and will report directly to the Information and Data Protection Commissioner. The main tasks and responsibilities shall include the following:
· handling local and cross-border data protection complaints and personal data breaches;
- handling applications lodged by applicants under the Freedom of Information Act
- conducting ex officio investigations in relation to data protection matters;
- providing legal advice concerning all the laws regulated by the IDPC;
- representing and defending the IDPC in judicial proceedings before the Information and Data Protection Appeals Tribunal, the Court of Appeal and any civil, criminal or other case as may be required;
- responding to queries (both in writing and by phone) concerning laws regulated by the IDPC, and handling requests for assistance by data subjects on how to exercise their rights under such laws;
- representing the IDPC by attending and actively contributing at international and European fora and expert groups, both remotely and in person;
- cooperating with other local, European and international regulators and authorities;
- collaborating and exchanging information with supervisory authorities of other countries and participating in joint programmes, meetings and conferences, both in Malta and abroad;
- regularly monitoring developments in the data protection field, including researching national and European case-law and analysing the impact thereof on IDPC’s work;
- delivering lectures, presentations and awareness-raising sessions on the laws regulated by the IDPC;
- proposing innovations and improvements to the current practices and systems with the objective to enable the IDPC to achieve better and more effective results in its operations; and
- discharging such other responsibilities as may, from time to time, be assigned by the Commissioner.
Must have :
At the time of the application, the candidate shall:
- have a thorough knowledge, both written and spoken (at least C1 level of the Common European Framework of Reference for Languages) of the Maltese and English languages;
- possess a level 7 Malta Qualifications Framework (MQF) law degree pursued in Malta, or alternatively an equivalent academic qualification gained abroad and recognised as equivalent in Malta by the Malta Qualifications Recognition Information Centre (MQRIC);
- possess a warrant to exercise the profession of Advocate in Malta (candidates who are not in possession of, or who are in the process of obtaining, the warrant may also be considered);
- have excellent knowledge and understanding of data protection legislation;
- have a minimum of two (2) years professional experience in data protection legislation;
- have high standards of meticulous attention to detail;
- have excellent written and verbal communication skills;
- be highly organised, efficient and able to manage own workload with minimal supervision; and
- be highly pragmatic and proactive.
Desirable to have :
Preference will be given to eligible candidates who:
- have performed duties as data protection officers;
- have experience in handling of requests to exercise data subjects’ rights in terms of the GDPR;
- have experience in carrying out data protection impact assessments;
- have experience in drafting of data protection notices, personal data breaches notifications, records of processing activities, agreements and other data protection-related documents and policies;
- have a good knowledge of information security fundamentals.
Interested candidates shall submit their application by e-mail to firstname.lastname@example.org including a copy of their Curriculum Vitae and a cover letter.
Please visit this URL to access IDPC’s recruitment data protection notice.
JobsPlus Permit No: 267/2022