Data Protection Officer - Rabat

Company :

AXA Services Maroc is the customer relations expertise center in Morocco for the companies: AXA France, AXA Direct France, AXA Assistance, AXA Belgium and AXA Switzerland

Located in Rabat since May 2004 and in Kénitra since 2024, we are now more than 4,500 employees.

Join us:

• It means choosing the world's leading insurance brand
• It means benefiting from many advantages well beyond market standards
• It means developing in a rewarding environment offering a variety of jobs
• It means joining a responsible group, offering a true company culture, based on the development of each person's skills

Our jobs:

The expertise of our teams covers the main insurance jobs:

• Contract sales
• Management of property and casualty and personal insurance contracts 
• Management of Auto and Home claims
• Processing of Health benefits
• Activation of Assistance guarantees
• Appointment scheduling for our General Agents
• Management of Savings contracts

Company culture :

Axa Services Maroc operates within a strongly collaborative culture, where people, trust, and high-quality professional relationships are central. The company promotes close and supportive management, encouraging accountability, development, and teamwork. This human-centered environment is reinforced by robust organizational practices that ensure reliability and operational efficiency. It is balanced by a performance-oriented mindset and a measured openness to innovation, supporting collective success.

Job :

Role and main mission:

Reporting to the Head of the Compliance, Internal Control and Security Department, your main mission is to ensure the organization's compliance with current regulations (particularly GDPR) regarding personal data protection, and to manage risks related to data confidentiality and security.

Main responsibilities

1. Regulatory and strategic monitoring

Continuously monitor regulatory changes (GDPR, local laws, CNDP recommendations...)
Support management on legal and strategic issues related to data protection

2. Compliance and data governance

Define, deploy, and maintain the personal data protection policy
Manage and update the register of processing activities
Implement and manage:

Consent management systems
Procedures for exercising data subject rights
Data breach management processes

Conduct impact assessments (DPIA) and support business projects
Oversee structuring topics: data mapping, cookies, Privacy by Design
Supervise data purging campaigns (structured and unstructured)
Manage the dedicated personal data mailbox
Handle requests for exercising rights and complaints
Ensure compliance of processing activities and follow-up on declarations to the CNDP

3. Awareness and training

Design and conduct training and awareness sessions for employees
Promote a data protection culture within the organization

4. Incident management and audits

Oversee the management of incidents related to personal data (breaches, leaks)
Keep the incident register up to date
Lead or coordinate GDPR compliance audits
Define and monitor corrective action plans

5. Relations with control authorities

Be the main point of contact with the CNDP
Handle mandatory declarations (incidents, files, reports)
Manage communications and controls with authorities

6. Advice and support

Support business units and data controllers in their projects
Integrate GDPR requirements from the design stage (Privacy by Design / by Default)

Required profile :

You have a Bac + 5 (Master's degree) in a legal field (business law, digital law, personal data law), IT (information system security), or a business school with a specialization in compliance or risk management.

Professional experience:
Minimum 2 to 3 years of experience in similar roles (lawyer specializing in personal data, compliance auditor, or GDPR consultant)

• In-depth knowledge of GDPR
• Knowledge of "Privacy by Design" and "Privacy by Default" methodologies
• Management of data processing mapping tools
• Principles of Information Systems Security (ISS)
• Project management

Head office address :

Desired personality traits :

Emotional distance Rationalism Flexibility Need for reflection Organization