Job description includes but not limited to -

1. Liaise with Privacy Regulators across multiple Jurisdictions to Demonstrate Compliance

2. Develop and Maintain Privacy Governance Structure

3. Develop, maintain and enforce employee data privacy policy

4. Integrate data privacy into records retention practices, hiring practices, practices for monitoring employees’ data, practices for disclosure to and for law enforcement purposes, etc.

5. Develop and Maintain policies/procedures for collection and use of sensitive personal data, for secondary use of personal data, for obtaining valid consent, for maintaining data accuracy, for direct marketing practices, etc.

6. Manage enterprise privacy risk consistent with organizational objectives

7. Develop and Maintain an inventory of processing activities

8. Develop and Maintain documentation of data flows (e.g. between systems, between processes, between countries)

9. Conduct due diligence on processors, vendors and third party data sources

10. Develop and Maintain Personal Data Inventory and Data Transfer Mechanisms

11. Embed Data Privacy Into Operations

12. Develop and Maintain Training and Awareness Program and assign responsibility for data privacy throughout the organization

13. Respond to Requests and Complaints from Individuals, Maintain procedures to respond to requests for access to personal data, provide a mechanism for individuals to update or correct their personal data and to respond to requests for opt-out, restriction or objection to processing, etc.

14. Monitor for New Operational Practices

15. Develop and Maintain Data Privacy Breach Management Program, maintain breach logs and conduct periodic drills, etc.

16. Monitor and report metrics for data privacy complaints

17. Monitor Data Handling Practices

18. Conduct and report privacy audits, reports and management metrics.