Overview

Privacy Analyst – DSARs & Incident Response Specialist – Krakow, Poland 

Are you passionate about privacy and protecting people’s data?

Do you enjoy working with structured processes while collaborating across global teams?

Join us and help build a trusted and effective privacy program!

 

Our office is situated in Cracow, and we embrace a hybrid working model.

Aon is in the business of better decisions

At Aon, we shape decisions for the better to protect and enrich the lives of people around the world.

As an organization, we are united through trust as one inclusive team and we are passionate about helping our colleagues and clients succeed.

What the day will look like

In this role, you will support the delivery of Aon’s privacy program, focusing on handling data subject rights (DSR) requests and contributing to privacy and security incident response. You’ll collaborate with colleagues from Privacy, Legal, Security, IT, HR, and business teams to ensure requests and incidents are managed accurately and within required timelines.

  • Supporting the intake, tracking, and processing of data subject rights requests (e.g., access, deletion, correction, portability, objection)
  • Performing initial validation checks and advancing complex or sensitive cases appropriately
  • Coordinating with internal stakeholders to gather, review, and prepare relevant personal data
  • Applying redactions and legal considerations to ensure compliant disclosures
  • Drafting concise and professional responses using established templates
  • Assisting with logging, documenting, and tracking privacy or security incidents
  • Supporting incident investigations through information gathering and follow-ups
  • Maintaining records, documentation, and contributing to basic reporting and metrics
  • Helping manage shared mailboxes related to DSRs and incidents
  • Supporting training materials, communications, and continuous improvement initiatives within the privacy program

How this opportunity is different

This is an excellent opportunity to build your career in privacy within a global, collaborative environment. You’ll work closely with experienced professionals across Privacy, Legal, and Security functions, learning from their expertise while contributing directly to meaningful work that protects individuals’ rights.

At Aon, you’ll be supported in developing your knowledge of global privacy regulations such as GDPR and gaining hands-on experience with tools, processes, and multi-functional collaboration. The role offers exposure to international teams and the ability to grow your capabilities in both operational privacy and incident response.

Skills and experience that will lead to success

  • Some relevant professional experience (e.g., 1–2 years) in privacy, including managing DSRs and data/security incidents; relevant experience may substitute for formal education
  • Foundational understanding of data protection concepts (e.g., personal data, data subject rights, data breaches) and a strong interest in developing further expertise
  • Strong attention to detail, organization skills, and ability to follow structured processes and workflows
  • Effective written and verbal communication skills in English, with a professional and customer-focused approach
  • Ability to handle sensitive and confidential information with care and work collaboratively within a team environment

Preferred (not required): familiarity with GDPR or similar regulations, knowledge of tools such as ServiceNow or OneTrust, and additional language skills (e.g., Spanish).

 

 

#LI-JW1

#LI-HYBRID

2573363 

Before you apply -
Register now and turn on alerts for jobs like this!

  • To apply for this position, receive job notifications and manage your applications, click "Register with Diversity Jobs Group".
  • To apply for this position without registering, click "Apply with Customer".

By registering you agree to our terms and conditions.

Apply with Customer

IMPORTANT: Before applying for this role, please make sure you have the right to work in the country where the role is based. Unless it clearly stipulates within in the job advert above that the hiring company is looking to or able to sponsor applicants it is deemed that the hiring employer will only consider applications from those able to comply with and work in the country where the role is based.