Digital Privacy Officer & Compliance Manager
Act as DPO for the business.
• Oversee and manage all data protection activities within the business.
• Develop and implement data protection policies and procedures.
• Ensure compliance with GDPR and other data protection laws.
• Work with counsel to help advise on local data privacy law issues in all applicable jurisdictions.
• Provide advice and guidance on data protection laws.
• Collaborate with the Information Security function to raise employee awareness of data privacy and security issues.
• Collaborate with Information Security function to maintain records of all data assets and exports and maintain a data security incident management plan to ensure timely remediation of incidents including impact assessments, security breach response, complaints, claims or notifications, and responding to subject access requests (SARs).
• Ensure the company’s IT systems and procedures comply with all relevant data privacy and protection law, regulation and policy (including in relation to the retention and destruction of data).
• Establish a Data Privacy/Information Governance Committee.
• Develop strategies and initiatives to ensure engagement with key internal and external stakeholders.
• Lead data protection training and awareness campaigns.
• Coordinate and conduct data privacy audits.
• Handle data protection breaches and investigations.
• Review vendor contracts and consents needed to implement projects in partnership with the firm’s Procurement and Information Security functions.
• Regularly report to senior management on data protection activities and compliance.
• Liaise with regulatory bodies and data protection authorities as required.
#J-18808-Ljbffr