职位详情
Leads the design, creation, coordination, and implementation of regional procedures and training addressing privacy issues in APAC while serving on and supported by a global team.
Assists compliance and works with legal team members on advising senior leadership on data policy issues and in connection with compliance matters for data and privacy laws and regulations, specifically PIPL, but also other Chinese and regional data privacy laws as well as cross-border rules.
Conduct internal and external data privacy audits, reviews, impact and readiness assessments and develop or facilitate adequate mitigation plans for specific units in cooperation with country/site/regional/business/staff functions managers and the Senior Business Ethics Audit and Investigation Manager
Involvement on regional roll-out of new products and services to provide guidance regional regulatory requirements, go-to market guidance to ensure compliance with data privacy requirements.
Ad 3: Daily organisational interaction and responsibility for compliance and data protection matters.
Advise region APAC management teams, leaders and managers on data privacy issues and identify and innovate resilient, durable and business efficient data protection solutions and processes.
Serve as point of contact for external interaction related to data protection, incl. submission of registrations to applicable Data Protection agencies/authorities
Participate in investigations into complaints and breaches relating to personal data and undertake reporting/remedial action.
Handling and negotiating Data Processing Agreements and other data protection agreements/contract clauses with external parties.
Job Qualifications
A minimum of a Bachelor’s degree and a strong interest in business metrics and operations.
Minimum of 5 years professional experience on data protection compliance with a legal, compliance, risk management, audit or consulting background (ideally with a few years having been in the role of a privacy officer).
Good knowledge of data protection requirements in APAC, with detailed knowledge of PIPL and breach notification requirements, and GDPR, including cross-border data transfer requirements.
Experience to advise on privacy and data security law and compliance efforts, including the organization and coordination of privacy assessments, corporate policies and processes.
Competencies
In-depth knowledge of IT, web, and mobile ecosystems and their privacy and data use implications and risks.
Ability to maintain strong working relationships with demanding internal and external clients.
Strong analytical capabilities and judgment.
Ability to make decisions and pivot quickly and fluidly, thinking practically and being solution oriented.
A practical and proactive problem-solver who possesses strong business acumen and is confident, mature and calm.
Excellent time management skills with the ability to prioritize and multitask and work under shifting deadlines in a fast-paced environment.
Ability to work independently and in a team environment with both the local and global Compliance and Legal teams and the information security teams.
Skills
Excellent written and verbal communication skills, in both Chinese and English.
Skillful use of MS Office software, e.g. Outlook, Word, Excel, PowerPoint.
Preferred Qualifications
Prior corporate experience
A law degree or background in compliance, risk or audit.
Certified Information Privacy Professional (CIPP), such as CIPP/a, CIPP/e, CIPM, CIPT, CISP/ CISSP, EXIN-DPO, CDPSE or other relevant privacy related certifications.
其他信息
行业要求:全部行业
所属部门:Marketing Department