Data Protection Officer
Job Type: Full Time / Permanent
As a Data Protection Officer, you will work to help improve our management of potentially sensitive information, conduct regular internal security audits, and serve as the main point of contact between the company and data protection authorities. The perfect candidate must ensure process integrity, provide privacy experience and insight, and protect the company against privacy risk exposure. This role reports to the VP, General Counsel, Legal and Privacy.
Responsibilities: • Serve as the main point of contact within the organization for staff members, regulators, clients, and relevant public authorities on issues related to data protection • Ensure that company policies are in compliance with codes of practice such as GDPR, PIPL, PIPEDA, PDPA • Evaluate the existing data protection framework to identify areas of no or partial compliance, and rectify any issues • Align with security personnel on privacy requirements • Determine certifications the company should achieve or maintain • Devise training plans and provide data protection advice to staff members • Inform and advise the data controller or data processor on all matters related to data protection • Work with security, corporate, and senior management offices to set up governance for privacy programs in the workplace. • Promote a culture of data protection and compliance across all units of the organization • Review and complete data privacy and data security questionnaires • Cooperate with Product, Internal and Security technology groups to implement client privacy and security requests • Keep apprised of client and regulatory trends regarding the applicable technology and its uses by clients • Understand how to navigate all customer’s procurement processes using legal counsel as needed • Work directly with VP, General Counsel, Legal and Privacy • Work cross -functionally with internal teams and external parties to ensure the protection of sensitive data • Ownership and creation and ongoing management of client relationships regarding privacy • Partner effectively with team and other departments to identify, solve problems, and search for ways to improve systems or processes.
Representative Activities: • Provide expert advice and educate employees on important data compliance requirements • Draft new and amend existing internal data protection policies, guidelines, and procedures, in consultation with key stakeholders • Deliver training across all business units to staff members who are involved in data handling or processing • Conduct audits to ensure compliance and to address potential issues • Maintain records of all data processing activities of the company • Serve as point of contact for data protection authorities • Lead and be a member of privacy and security audit group.
Basic Qualifications (These are the minimum qualifications you need to be considered for the job): If you have some but not all the requirements listed, please do not count us out. Studies show that some individuals avoid applying for jobs if they do not meet every qualification. We are committed to finding the right person for each role, not just checking off a list. We encourage you to apply as you might be the right fit for this role or other exciting opening • At least 5 years privacy experience • Proficiency in word processing and Microsoft Office (Office 2010 strongly preferred) including Word, PowerPoint, Excel, Outlook • Excellent grammar, spelling, and proofreading skills • Unparalleled attention to detail • Strong interpersonal skills (face-to-face and phone) • Ability to effectively handle multiple tasks/priorities independently • Exhibit high initiative and energy, sense of urgency • Ability to work in a fast-paced environment • Strong client service orientation (internal and external) • Maintain strict confidentiality and a high level of professionalism • Independent judgment.