Data Protection & Responsible AI Analyst

Data Protection & Responsible AI Analyst

Job Title – Data Protection & Responsible AI Analyst
Location – Malta/Hyderabad

Permanent

About Flutter:

Flutter consists of two commercial divisions (FanDuel and International) and our central Flutter Functions; COO, Finance & Legal. Here in Flutter Functions we work with colleagues across all our divisions and regions to deliver something we call the Flutter Edge.  It’s our competitive advantage, our ‘secret sauce’ which plays a key part in our ongoing success and powers our brands and divisions, through Product, Tech, Expertise and Scale.

In Flutter Legal we provide global expertise to protect the Flutter brand and drive the “Flutter Edge”. The team are leaders of our sustainability and social license to help our customers and communities thrive.

The Data Protection & Responsible AI Analyst supports the creation of a culture of responsible AI governance and privacy compliance across Flutter Entertainment. This dual-focused role assists in implementing the Group's AI governance framework and Data Protection policies in alignment with the EU AI Act, GDPR, and other applicable regulations. The analyst will support monitoring and reporting on Flutter's AI activities while ensuring robust data protection practices across all operations.

What you’ll do

• You will have a key role in maintaining and improving our AI governance policies and responsible AI framework to meet the EU AI Act requirements
• Support AI risk assessments across multiple Group divisions and offering analytical input to guarantee EU AI Act compliance
• Assist in deploying and tracking AI governance frameworks, making sure they operate efficiently across divisions.
• Assist in the development of AI governance controls, risk indicators, and compliance metrics.
• Aid in the preparation of governance reports for senior leadership and Board questions.
• Contribute to training and awareness efforts related to AI governance
• Conduct AI system risk assessments and classify systems under the EU AI Act to determine their risk categories.
• Perform Privacy Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs), maintaining documentation of data flows and processing inventories throughout business units.
• Keep AI system inventory and risk classification records up to date and assist in coordinating with regulatory authorities concerning AI system adherence.
• Support data subject rights requests and regulatory inquiries, ensuring adherence to GDPR and other applicable privacy regulations.
• Assist with third-party data processing agreement assessments and privacy due diligence, as well as support the development of privacy training materials and awareness sessions.
• Documenting and tracking privacy and AI-related risks for reporting critical issues to senior management will be a key part of your responsibilities.
• Help with internal and external audits concerning data protection and AI governance.
• Support improvements to privacy and AI governance processes. Additionally, you will prepare compliance reports and metrics for leadership review.

How you’ll do it

To thrive in this position, you should bring 3-5 years of experience in data protection, privacy compliance, AI governance, or technology risk. Your background in GDPR compliance and privacy regulatory frameworks will be crucial. A solid grasp of AI/ML technologies and related governance requirements is required, along with knowledge of EU AI Act requirements and methods for risk classification.

A postgraduate qualification in AI ethics, governance, or regulatory compliance is preferred, and experience in regulated industries such as financial services, gaming, or technology will be advantageous. Your background may include experience in the iGaming, sports betting, or entertainment industry, as well as previous experience supporting regulatory examinations or compliance audits.

Candidates need a solid grasp of incident response and regulatory reporting workflows. They must have strong analytical thinking and problem-solving abilities. Experience with data analysis tools like Excel, SQL, and Python or R is necessary. Understanding AI system lifecycle management, machine learning, data science concepts, and AI architecture is valuable. Knowledge of privacy-enhancing technologies and data governance platforms is required.

Strong analytical skills and careful attention to detail are important, along with clear communication for technical and non-technical groups. You should collaborate effectively across functions and Lines of Defence. Demonstrating initiative as a self-starter in evolving regulatory contexts is key. Flexibility to thrive in a fast-paced, dynamic setting with competing priorities is necessary. Being a teammate who develops strong connections across the organization is essential.

A Bachelor's degree or equivalent experience in Technology, Law, Computer Science, Data Science, or a related field is required. IAPP certification (CIPP/E, CIPM, CIPT) or a dedication to acquire it within 12 months is encouraged. An AI governance certification or training (ISO/IEC 23053, IAPP AI Governance, or similar) is preferred.

About Flutter

We are a world leader in online sports betting and iGaming, with a market leading position in the US and across the world.

We have an unparalleled portfolio of the most innovative, diverse and distinctive brands including FanDuel, Sky Betting & Gaming, Sportsbet, PokerStars, Paddy Power, Sisal, tombola, Betfair, MaxBet, Junglee Games and Adjarabet.

With our global scale and challenger attitude, through which we excite and entertain our customers, in a safe and sustainable way. Using our collective power, the Flutter Edge, we aim to disrupt the sector, learning from the past to create a better future for our customers, colleagues and communities.

We’re working to be an inclusive employer, and we encourage people from all backgrounds, ways of thinking and working to apply. Everyone brings different perspectives and experiences; you don't have to meet all the requirements listed to apply for this role.

If you need any adjustments to make this role work for you let us know, and we’ll see how we can accommodate them.