Privacy Compliance Expert

Responsibilities:

• Act as privacy and data protection advisory point of contact for appropriate business, data subjects and functional stakeholders;
• Manage communication channels, incl. DPO mailbox and DPO welink channel;
• Support the day-to-day data privacy activities of the Data Protection Office and provide support in strategic efforts to ensure data privacy compliance;
• Assist in handling inquiries and issues related to data privacy;
• Advise on the fulfilling of data subject rights requests and handle escalations;
• Support communications with supervisory authorities;
• Support with data breaches in assessing, documenting and, where appropriate, notifying data breaches to data subjects and authorities;
• Monitor, supervise, review and coordinate DPIA performance/drafting;
• Conduct research and analysis of European and international privacy landscape and be able to synthesize into insights for business and senior leadership;
• Coordinate and collaborate with the data privacy coordinators (GSPO, RSPO, CSPO, PI) on a regular basis;
• Contribute to developing and updating policies and procedures for compliance;
• Lead and conduct internal inspections and support external audits;
• Lead/assist in developing and delivering data privacy training to employees and leadership;
• Support in building and maintaining reporting dashboards and presentation materials to senior leadership;
• Collaborate with internal groups such as Legal, IT Security, HR, Procurement, and Marketing to address inquiries, identify privacy gaps, propose solutions, and incorporate practical approaches into official procedures.

Position Requirements

Knowledge:

• sound knowledge of privacy protection principles and laws and standards of global mainstream countries/regions, such as GDPR and China Personal Information Protection Law. Master the privacy protection governance framework, policies, and processes.

Skills:

• writing policy and process documents, and risk assessment methods

General capabilities:

• communication and project management capabilities

Professional capabilities:

• standard insight and analysis capabilities; Risk identification capability; Compliance management and operation capabilities; External communication and trust building capabilities

Experience:

• Bachelor or Master Degree in Legal or Information Technology or equivalent
• Work experience in data protection and/or legal compliance with a minimum of 3 years

Other:

• Pass at least one international certification in the privacy protection field, such as CIPM, CIPT, and CIPPE.
• Fluent in English
• Ethical, trustworthy, reliable

#J-18808-Ljbffr