VP, Associate General Counsel & Chief Privacy Officer

The VP, Associate General Counsel & Chief Privacy Officer is responsible for (i) leading the Company’s Privacy Office, supporting and monitoring privacy compliance across the company; (ii) provide legal support to the Marketing team with responsibility for advertising review, including promotions/sweepstakes, digital marketing and social media; and (iii) leading the Company’s Record Management Program.   *Primary Responsibilities*   *Privacy**:* Oversees all ongoing activities related to the development, implementation, maintenance of, and adherence to the Company’s policies and procedures covering the privacy of and access to, data in compliance with applicable laws and the Company’s information privacy practices. Monitors privacy compliance across the company and monitors agents’ compliance with their data privacy and safeguarding obligations. Analyzes, maintains and updates existing policies and procedures to ensure compliance with current laws and regulations. Manages execution of privacy audits in conjunction with internal audit function. Participates in the development, implementation and ongoing compliance monitoring by the business and technology areas to ensure privacy program and policy requirements are met, and privacy concerns and responsibilities are addressed. Participates in the development, implementation and ongoing compliance monitoring of third party agents to ensure privacy program and policy requirements are met and contract obligations are honored. Responsible for US- EU Safe Harbor compliance. Develops and implements regular metrics and reporting of compliance with privacy requirements. Assists other areas of legal with registrations required under various data protection laws. Collaborates with regulatory staff to respond to government licensing reviews as to privacy matters.   Manages the privacy impact assessment process, to review privacy impacts of various company initiatives. Participates in new business initiatives and product development activities to identify and escalate privacy considerations. Collaborates with Information Security on the security risk assessment process to address privacy compliance and risk mitigation. Works collaboratively with other departments to mitigate privacy risks.   Facilitates the assessment of company personal data collection sharing and use practices including inventory and mapping of data. Monitors the data request and usage processes and cross border data transfer matters for personal data across the company. Establishes with information security and other staff, mechanisms to track and report upon data usage and sharing. Continually updates and re-evaluates the extent to which customer and employee information is collected and shared internally and externally.   Serves as internal consultant to the technology services department and the information security department to interpret privacy policy related questions, problems or issues and to ensure data security practices are consistent with privacy and compliance requirements. Works closely with the technology services teams to anticipate potential privacy problems embedded in the use of emerging technologies. Identifies privacy requirements for technology driven projects. Reviews all system- related information security plans throughout the organization’s network to ensure alignment between security and privacy practices.   Develops effective internal and external privacy communications including training programs regarding privacy compliance as needed. Responsible for privacy and security training programs and conducting privacy training across the enterprise. Performs other duties as assigned.   *Marketing Support**:* Oversees North American advertising review, including promotions/sweepstakes, digital marketing and social media. Responsibilities also include oversight of brand enforcement activities and maintenance of the Company’s domestic and international trademark portfolios, including clearance, registration, maintenance, enforcement, trademark assignments, trademark licensing, and trademark/copyright permission requests. Performs other duties as assigned.   *Records Management**:* Oversees the Company’s Records Management Program, with responsibility for implementing and maintaining the Company’s record retention and destruction schedule, maintenance of the Company’s agent files across the global agent base, and managing global employee training and education on record management policies and procedures. Performs other duties as assigned.       *Educational Requirements* * Law Degree * CIPP (Certified Information Privacy Professional) certification (highly preferred) * Any combination of relevant education and experience and/or related professional designations/ certifications in this field are highly desirable. *Experience Requirements* * 7-10 years in privacy, compliance or risk management in a corporate setting * 5 years in financial services preferred, preferably in business process operations  *Essential Skills* * Advanced understanding of global privacy trends, best practices and legal and regulatory requirements, including EU Data Privacy Directive * Demonstrated ability to identify and analyze issues, and think critically to resolve problems * Ability to form solid assumptions and formulate decisions and recommendations from diverse facts and information * Proven ability to work effectively and efficiently both individually and in a team environment * Demonstrated success in working cross-organizationally to achieve desired outcomes * Comfortable and adept in dealing with ambiguity * Strong project management experience and skills * Ability to collaborate with and influence internal executive management and external stakeholders * Ability to tailor communications to the size and nature of the audience, including business and senior management, and other internal and external business contacts regarding difficult and complex issues * Demonstrated ability to operate in a complex, rapidly changing environment * Demonstrated success in working cross-organizationally to achieve desired outcomes *LI-MF1

Expired, click here to search for relevant jobs

Around the Network