This Job Role addresses the following activities

• Designing, implementing and maintenance Data Privacy Program for Enterprise
• Data Privacy Laws & Regulations- Globally
• Privacy Enhanced Technologies
• Data Privacy Grievance Handling

Data Privacy Compliance

1. Competencies

• Experience in Data protection compliance
• Sound knowledge on Data protection laws and practices, including deep understanding of IT Act 2000, DPDPA and GDPR
• Hands-on experience in delivering data privacy projects/programs
• Prior experience in reporting to management on data privacy risk and compliance
• Experience in a legal, audit, or risk management role is preferred
• Strong project management skills
• Ability to work effectively under pressure and to manage sensitive and confidential information
• Excellent verbal and written communication skills, with strong attention to detail

1. Job Accountabilities

• Provide guidance in development and ongoing review and oversight of the privacy and security of Compliance Program and identification of compliance risks.
• Serve as the main point of contact within the organization for staff members, regulators, and relevant public authorities on issues related to data protection
• Ensure that company’s Data protection processes are in compliance with IT Act 2000, DPDPA, GDPR (General Data Protection Regulation) and other global laws.,
• Evaluate the existing data protection program to identify areas of no or partial compliance, and rectify any issues
• Inform and advise the data controller or data processor on all matters related to data protection
• Provide expert advice and educate employees on important data compliance requirements
• Draft new and amend existing internal data protection policies, guidelines, and procedures, in consultation with key stakeholders
• Ensure training is delivered across all business units to staff members who are involved in data handling or processing
• Formalize Data Protection processes such as Privacy Impact Assessment, Privacy by design, etc
• Oversee Data breach management processes
• Liaise with Legal, Compliance, IT and Cyber Security teams for ensuring Data privacy processes are embedded in co-ordination with each business unit
• Drive audits to ensure compliance and to address potential issues
• Serve as point of contact for data protection authorities
• Promote a culture of data protection and compliance across all units of the organization

1. Key Attributes (Experience and Qualifications)

• BE/B.Tech/ME/M.Tech/MCA/MS/LLB/LLM from a reputed/recognized institute
• 15-20 years of overall experience
• Law degree from an accredited law school is preferred
• Hold at least one Data Protection and/or Privacy certification such as, CIPP, CIPT, ISEB, etc., (preferred).
• 12+ years of experience within a compliance, legal, audit and/or risk function or cyber security with recent experience in privacy compliance.
• Should possesses Leadership skills and have experience of handling a large team.
• Excellent verbal, written communication and presentation skills
• Personal Drive and Positive Work Ethic to deliver results within tight deadlines and demanding situations
• Ability to comprehend tasks with high complexity and create execution plans for review by DPO and deliver with minimum supervision
• Ownership mind-set and should demonstrate persistence in following up on tasks to be performed by other stakeholders so that project timelines can be met