Senior Data Protection Executive

Reporting to the Associate Director – Flutter International Data Protection Officer, the Senior Data Protection Executive supports the effective delivery and maturity of the Division’s data protection and wider privacy governance framework. The role works across multiple regions, controllers, and brands to ensure consistent adoption of privacy requirements and best practices under international regulatory regimes.

A key partner to the Flutter International Data Protection Officer,, the role focuses on coordinating and influencing regional and brand-level teams within a federated governance model. It enables alignment on privacy operations, compliance monitoring, incident response, AI governance, and overall programme expectations. While not directly managing teams, the position steers and supports those responsible for implementing privacy controls, enabling compliance processes, and embedding a strong privacy culture across the Division.

Key Responsibilities

- Support the investigation of personal data incidents and breaches across Regions and Brands. Coordinate with relevant stakeholders to ensure incidents are handled in line with local regulatory requirements and Group standards.

- Deliver core data protection compliance activities including monitoring compliance with local and international data protection laws and regulations, and support the consistent application of Group Key Minimum Requirements and FI Division Data Protection Requirements within a federated operating model.

- Supporting and reviewing Data Protection Impact Assessments (DPIAs). Provide pragmatic, risk-based guidance to support compliant business decision-making affecting mulitple controllers. Advising on risk mitigation measures in collaboration with commercial and operational teams

- Support regular briefings for commercial business teams and contribute to reports for senior management and governance forums. Coordinate with regional privacy and legal stakeholders globally to ensure alignment and effective information sharing.

- Work closely with Controller entities and internal stakeholders (including IT, Marketing, Product, HR, Operations, and Online teams) to strengthen internal data protection controls, and to embed privacy-by-design and privacy-by-default into business processes.

- Contribute to clear documentation and written briefings on data protection topics for internal audiences. Contribute to the development of targeted training materials for staff interacting with personal data or supporting data protection processes.

- Manage data subject rights requests (including DSARs, erasure, and objection requests) and customer data protection queries or complaints. Ensure all requests and actions are accurately recorded in internal systems. Maintain and operate documented procedures and service level agreements (SLAs) for handling rights requests.

Skills and Capabilities

·       Strong technical competence in data protection and privacy governance.

·       Ability to influence, coordinate, and align senior stakeholders across multiple controllers and jurisdictions.

·       Excellent communication skills and strong attention to detail.

·       Credibility and confidence when engaging with business units, senior leaders, and regulators.

·       Adaptive, proactive, and comfortable working in a dynamic and federated model.

Essential Qualifications & Experience

·       Professional qualification (CIPP/E, CIPM, CIPT, AIGP, or equivalent) or demonstrable equivalent experience.

·       Experience delivering or coordinating privacy programmes across complex, multinational organisations.

·       Strong analytical, programme management, and commercial skills.

·       Strategic mindset with strong prioritisation and communication capabilities.

·       High levels of energy, resilience, and adaptability in a fast-paced environment.

Flutter International

The Flutter International (FI) division, one of two divisions within Flutter Entertainment, is comprised of various businesses and brands operating under five regions across Europe, Mediterranean, Africa, Asian Pacific and South America. Each Brand acts as a Controller of personal data in respect of its customers and employees within that Region. In the Flutter federated model, for certain Brands that share platforms and functions across Regions, such Brand may also operate as a Processor for another Region — performing processing activities on behalf of a Controller entity of the same Brand located in a different Region.