Job
Description
Job overviewAs a Privacy Operations Personnel, you are required to have a deep understanding of data protection regulations. You will be responsible for conducting Privacy Impact Assessments (PIA), performing audits of data privacy practices, and implementing data protection initiatives across the organization. Key responsibilities include providing training and conducting workshops to raise privacy awareness, responding to data breaches, managing data subject rights requests, and ensuring compliance with consent management protocols. Additionally, the role involves supporting privacy champions, maintaining records of processing activities, assessing third party risks, and implementing privacy enabling technologies to safeguard data integrity and compliance across all data handling processes. Key Responsibilities1. Identify compliance review requirements with DPO, conduct periodic reviews. 2. Periodically update data privacy and protection policy, procedures in compliance to the applicable laws and regulations. 3. Identify privacy training needs, develop privacy training programs aligned with data protection laws, obtaining approval on training objectives. 4. Conduct periodic training sessions with HR and department level Privacy Champions, to create awareness about data privacy and protection. 5. Maintain records of processing activities documents for all personal data processing activities. 6. Conduct Privacy Impact Assessments (PIA) for all personal data processing activities and Data Privacy Impact Assessments, as required. Update Privacy Risk Register, and report delays to DPO. 7. Assist the Legal team and Business Owners in drafting privacy notices, cookie policy, consent banners, etc. 8. Drive Privacy by Design principles, aiding business owners, Technology, and IT team. 9. Handle data subject rights requests, update request register, and communicate responses. 10. Ensure Third Party Risk Management Procedure compliance with regulations. 11. Assist Procurement in third party risk assessments, negotiate agreements, and perform due diligence. 12. Conduct due diligence on third parties' practices from a data privacy and protection standpoint, establish Data Processing templates, and verify guarantees. Required Qualifications and Skills: Bachelors degree in law, Information Security, or related field (masters degree preferred). Certification in data protection (e.g., CIPP/E, CIPM) highly desirable. Strong understanding of data protection laws and regulations (e.g., DPDPA, GDPR). Excellent communication and people skills. Ability to work collaboratively with cross functional teams. Meticulous with strong analytical and problem solving abilities. Prior experience in privacy operations or related field preferred. Proficiency in relevant software and tools for privacy management and compliance.
