Card Factory

Are you passionate about tech and love helping people? Do you thrive in a fast paced environment where no two days are the same? If so, we've got an exciting opportunity for you to join our team as an IT Service Desk Analyst. Based at our Support Centre in Wakefield, this isn't just another IT role - it's a chance to be part of a team that's shaping the future of cardfactory. We're on a transformation journey, and our IT Department is right at the heart of it. This is your chance to make a real impact, develop your skills, and be part of something big. With great progression opportunities and the chance to get involved in a variety of technologies, you'll be supported to grow throughout our new five year strategy. This role also includes participation in an on call rota, providing out of hours support as required. If you're motivated, love working with people, and want to be part of a supportive team, we'd love to hear from you. What you'll be doing: You'll be the first point of contact for colleagues and suppliers whenever they need IT support, whether that's over the phone, by email, or in person. Every query you receive will be logged accurately in our IT Service Management tool (Halo), so nothing gets missed. Your role will involve supporting a wide range of technology, from end user devices and printers to MS Office and core business applications like POS and ERP. You'll work closely with other IT teams to make sure issues are resolved within agreed SLAs, and when something needs extra attention, you'll elevate it to the right team or third party partner. Keeping users updated is key, so you'll provide clear progress updates on their requests and incidents. You'll also take ownership of each case from start to finish, ensuring every action is recorded and nothing falls through the cracks. Beyond day to day fixes, you'll look for patterns and trends, helping us prevent repeat issues and improve our service. You'll manage user accounts and access, liaise with external support partners, and contribute to our knowledge base so the whole team benefits from shared expertise. What we're looking for: Experience working on an IT Service Desk, ideally in a retail environment. Strong technical knowledge across MS Office, POS systems, networking basics, and Active Directory. A good understanding of ITIL best practices and how they apply day to day. Excellent communication and problem solving skills, with a positive, can do attitude. Flexibility to work outside core hours when needed, and a full clean driving licence for occasional travel.

Join us as the UK & Ireland Data Protection Officer and play a pivotal role in shaping and safeguarding the privacy framework across cardfactory, and Garlanna. In this influential position, you'll act as a trusted, independent advisor-ensuring our organisation meets its obligations under UK GDPR, EU GDPR, PECR, ePrivacy and related legislation. You'll lead the way in embedding a strong culture of privacy by design, guiding stakeholders at all levels, and championing accountability across our UK and Ireland operations. As the primary contact for regulators, data subjects and internal teams, you'll oversee compliance, identify and mitigate privacy risks, and ensure robust policies and controls are in place. If you're ready to make a significant impact by driving a proactive, risk-aware approach to data protection, we'd love to hear from you. At cardfactory, we believe in smart working. That means you'll spend around two days a week at our Wakefield support centre, with the flexibility to work from home the rest of the time. What you'll do Data Protection Strategy: Develop, implement and maintain a comprehensive Data Protection Strategy aligned to organisational goals and legislation. Own and update the Record of Processing Activities (ROPA). Policies & Documentation: Maintain all data protection policies, procedures and documentation, including DPIAs, privacy notices, breach logs and SAR logs. Support development of the Information Security Management System. Compliance Management: Lead audits and compliance activities to meet UK/EU GDPR, PECR and other regulatory requirements. Run the GDPR and data privacy steering committee. Monitoring & Audit: Conduct ongoing assessments and internal audits to ensure adherence to data protection standards. Review contracts to ensure appropriate legal and technical safeguards. Regulatory Liaison: Act as the primary contact for the ICO, DPC and other regulatory bodies, managing enquiries, investigations and reporting duties. Incident & Breach Management: Lead breach assessments, investigations and reporting, ensuring effective mitigation, documentation and communication. Training & Awareness: Design and deliver training initiatives, keeping colleagues informed on data protection requirements, risks and emerging trends. Leadership: Advise senior leaders and business units on privacy risks and compliance. Provide leadership and mentoring to the team. Supplier Risk Management: Oversee governance and risk assessments for third party suppliers to ensure compliance and security standards are met. Collaboration & Consultancy: Act as the first point of contact for data privacy queries. Work cross functionally to ensure a consistent, business aligned approach to data protection. Risk Management: Identify, assess and mitigate data privacy risks, ensuring clear reporting to the appropriate stakeholders. What you'll need Strong risk management capability and ability to deliver practical, commercially aware solutions. Strong influencing skills (soft / hard / active listening etc.) - and the ability to blend and adapt them to the situation and intended audience. Able to implement a holistic security program of strategy, policies, processes and technologies. Being able to balance legislative requirements taking into consideration a commercial viewpoint People management skills to direct and manage a small team of data privacy specialists. Experience Substantial experience in a DPO role, managing privacy operations complaints with the GDPR and PECR. Experience leading, developing and managing teams. Familiarity with Microsoft Purview, One Trust and other similar DSAR management and tooling. Experience working in fast paced and complex environments, working across multiple business units. Experience with ISO 27001, ISO27701, ISAE 3000/3402 or other information security standards and frameworks. Location Century House Brunel Road Wakefield 41 Industrial Estate, WF2 0XG

Card Factory is seeking a Data Protection Officer to oversee their privacy framework across cardfactory, and Garlanna. This pivotal role requires developing a comprehensive Data Protection Strategy, managing compliance with UK and EU GDPR, and acting as the primary liaison for regulators. The ideal candidate will have significant experience in a DPO role and strong skills in risk management and team leadership. The position offers flexibility with a hybrid working model.