Are you excited for your new career adventure?
We are looking for a Data Protection Group Coordinator F/M to join our team based in Gdansk, Poland. We are seeking a motivated, dynamic and optimistic teammate, ready to take on new challenges!
About Lyreco
The Lyreco Group is the European leader and the third largest distributor of workplace products and services in the world. A privately-owned company since 1926, Lyreco is now present in 25 countries, operating in 40 different countries across the globe.
A global workplace solutions company with 10,000 employees, Lyreco’s mission is to delivery sustainably, what any workplace needs, so its people can focus on what matters most. We are pioneers, today and tomorrow, in delivering what any workplace needs, from workplace products, to services, anywhere you work. We are active in the areas of office supplies, print services and consumables, PPE and safety solutions, coffee and catering, hygiene and cleaning, furniture and ergonomics solutions, and wellbeing services.
To learn more about Lyreco – see our career website here
As a Data Protection Group Coordinator, your role is to ensure the organization’s compliance with EU GDPR, national data protection laws, and internal privacy policies. You will support strategic privacy initiatives, advise on data protection risks, and foster a privacy-first culture across all subsidiaries.
WHAT WE OFFER
As Data Protection Group Coordinator, you will play a key role in safeguarding personal data across all Lyreco entities and strengthening our privacy-first culture at global scale.
Ensuring Compliance:
• Monitor compliance with GDPR, national laws, and internal policies across all subsidiaries
• Provide expert guidance to leaders and teams on data protection obligations
• Review and approve key documentation such as privacy notices, DPAs, consent forms, and internal policies
Training and Awareness:
• Develop and deliver training programmes tailored to various audiences
• Increase awareness through targeted internal communication campaigns
• Embed a privacy-first mindset at every level of the organisation
Data Protection Impact Assessments (DPIA):
• Advise and oversee DPIAs for new initiatives and systems
• Ensure privacy-by-design and privacy-by-default principles are consistently applied
• Recommend mitigation strategies to reduce privacy risks
Cooperation with Supervisory Authorities:
• Serve as the primary point of contact for Data Protection Authorities
• Manage regulatory inquiries, audits, and related documentation
• Ensure transparent and timely reporting obligations are fulfilled
Incident and Breach Management:
• Lead the assessment and investigation of data incidents and breaches
• Determine notification requirements under GDPR Articles 33 and 34
• Follow up on corrective and preventive measures to strengthen resilience
Recordkeeping and Auditing:
• Maintain and update the Record of Processing Activities (RoPA) for Group entities
• Conduct regular compliance assessments and internal audits
• Prepare dashboards, reports, and recommendations for senior leadership
Advisory Role in Projects:
• Support business and IT teams to integrate privacy requirements in all projects
• Review third-party agreements and ensure adequate contractual safeguards
• Harmonize privacy practices across countries in alignment with Group standards
Reporting and Governance:
• Provide periodic reporting to senior management and governance bodies
• Support strategic privacy initiatives and compliance maturity efforts
• Contribute to risk management and corporate governance frameworks
YOUR PROFILE
Qualifications and Experience:
• University degree in Law, Information Security, Compliance, or a related field
• Postgraduate studies in Data Protection or IT Law are an asset
• 3–5 years of experience in data protection, compliance, legal, or information security roles
• Experience in multinational or group-level environments is preferred
• Professional privacy certifications (e.g., CIPP/E, CIPM, CIPT) are a strong advantage
• Solid understanding of GDPR, national privacy laws, and core information security principles
Languages:
• Excellent command of English
• Additional European languages are a plus
Key Competencies:
• Strong analytical capabilities and structured problem-solving skills
• Clear and confident communication with diverse stakeholders
• High ethical standards, integrity, and discretion
• Ability to work independently and navigate multi-country environments
• Strategic thinking combined with operational attention to detail
• Confidence in advising senior management and engaging with regulators
Reporting Line and Independence:
• Reports to the Head of IT Risk Governance and Compliance
• Operates independently with no conflict of interest in fulfilling DPO-related responsibilities
• Provided with the necessary authority, access, and resources to perform effectively
If the above job description interests you and you think you are a good fit, please send your cv ! We look forward to receiving your application.
#LI-TL1