Ta oferta pracy jest nieaktualna od 154 dni. Sprawdź aktualne oferty pracy dla Ciebie

Data Privacy Officer

  • Warszawa, mazowieckie
  • Kierownik
  • 21.05.2018

    Pracodawca ma prawo zakończyć rekrutację we wcześniejszym terminie.

    top
    Data Privacy Officer
    Location: Prague or Warsaw or Poznań

    Outputs and Responsibilities:

    Governance:
    • Maintain, develop and implement ABEG's privacy management program and the resulting privacy policies, procedures and documentation for the processing of personal data in coordination with appropriate members of the organization (e.g., business process owners, legal, information security, the works council, risk management, and the ethics and compliance officers).
    • Establish and manage an enterprise Privacy Council.
    • Lead the enterprise's response to privacy-related emergencies and other potentially damaging events.
    • Communicate with regulatory authorities and the public concerning privacy issues (for example, answering data subject's questions and requests).
    Privacy Impact Assessments:
    • Determine the enterprise's specific privacy-related requirements and potential vulnerabilities.
    • Receive and manage internal reports from business stakeholders to maintain control over all project and innovative initiatives, including change management, to ensure timely attention for privacy bottlenecks and hiatuses.
    • Ensure that business units, technology teams and third parties (service providers) follow ABEG's privacy management program, meet privacy policy requirements and address privacy concerns.
    • Continuously monitor the status and effectiveness of privacy controls across service offerings, ensuring that privacy-related key risk indicators are effectively monitored to prevent an unacceptable impact on business objectives and reputation.
    Compliance Monitoring:
    • Support the creation of an inventory that documents how and why ABEG (its subsidiaries) collects, shares and uses personal data.
    • Continuously update and re-evaluate the extent to which customer and employee information is collected and shared internally and externally.
    • Monitor the data request and usage processes, purpose-based authorized use and prevention mechanisms' effectiveness against unauthorized use, and cross-border data transfer matters for personal data across ABEG.
    • Maintain ABEG's (its subsidiaries) registry of all personal data stores and processing activities.
    Personal Data Inventory and Usage:
    • Serve as the internal advisor to the IT and information security departments to interpret privacy-policy-related questions.
    • Ensure that data security practices - in particular, logging, monitoring and auditing practices - do not conflict with privacy requirements.
    Information Technology:
    • Conduct or oversee privacy awareness campaigns, training and orientation for all employees - in particular, application developers, HR and marketing.
    • Identify trends in privacy and regulatory requirements and compliance enforcement, and account for the necessary changes in the privacy management program, updating information only to the stakeholder audiences affected in their respective activities
    Awareness, Training, and Other Communications:
    • Conduct or oversee privacy awareness campaigns, training and orientation for all employees - in particular, application developers, HR and marketing.
    • Identify trends in privacy and regulatory requirements and compliance enforcement, and account for the necessary changes in the privacy management program, updating information only to the stakeholder audiences affected in their respective activities.

    Competence Requirements:

    • Strong analytical and problem resolution skills. Sound business judgment, with the ability to think strategically and give practical advice by balancing business needs with legal risks.
    • Strong written and verbal communication skills, as well as the ability to work well with a diverse client base.
    • Willingness to travel to determine and influence nondomestic privacy requirements.
    • Willingness to be available for incident and emergency handling outside standard office hours, where necessary.
    • Knowledge of the privacy aspects of the product development life cycle, data handling and asset classification, and knowledge of the role of a privacy professional in ensuring that customer data is properly managed.
    • Ability to maintain proper documentation, relevant records and archives in an orderly, transparent fashion
    • Fluency in English and one of central European languages.
    • Has the accessibility and ability to interface with, and gain the respect of, stakeholders at all levels and roles in the company.
    • Is an confident, energetic self-starter, with strong interpersonal skills.
    • Has good judgment, a sense of urgency and has demonstrated commitment to high standards of ethics, regulatory compliance, customer service and business integrity

    Knowledge and Experience Required:

    • Bachelor's degree or higher in business administration, law, finance, accounting, computer science or a related discipline is required.
    • An advanced degree in law (J.D.), business (M.B.A.), information science (MIS), information security or a related field is preferred.
    • Five to 10 years of experience in privacy, data protection, security, risk management, auditing and/or compliance.
    • Experience of working in a heavily regulated and/or audited environment.
    • Legal experience in government, law firms or multinational corporations preferred, with at least the past three to five years focused on privacy.
    • Detailed knowledge of the EU e-Privacy Directive and the EU General Data Protection Regulation (GDPR).
    • Experience with EU model contracts and/or Binding Corporate Rules for international data transfers.
    • Experience or familiarity with governance, risk and compliance (GRC) tools and how they can be used to support privacy-related GRC activities.
    • Experience implementing privacy policies in an international business that engages in business-to-business (B2B) and business-to-consumer (B2C) transactions.
    • Experience and familiarity with technological assistance tooling, such as data discovery, data mapping, authorization and access management, and pseudonymization technologies.
    • Prior experience with privacy in FMCG - in particular, in Poland, Czech Republic, Romania, Slovakia - and/or experience with privacy in internet.

    We offer:

    • Place of work can be in Prague or Warsaw or Poznań
    • The environment of growing company
    • Opportunity to work for top brands within the industry
    • Cooperation with senior leaders from all over the globe
    • Unique working place in newly designed offices in the inner centre of Prague
    • Competitive salary and benefits program

     

    PRACUJ Z NAMI
    I TWÓRZ MARKĘ MISTRZÓW
    aplikuj
    Kompania Piwowarska skupia trzy browary o wieloletniej historii: Tyskie Browary Książęce (rok założenia - 1629), Browar Dojlidy w Białymstoku (1768) i Lech Browary Wielkopolski w Poznaniu (1895). To w nich warzymy najchętniej wybierane przez Polaków piwa, między innymi: Żubra, Tyskie, Lecha, Dębowe, Redd'sa oraz kolekcję specjalności Książęcego. Sprawdzone receptury, naturalne składniki, nieskazitelna czystość w naszych browarach a przede wszystkim umiejętności doświadczonych piwowarów - to wszystko sprawia, że warzone przez nas piwa są cenione w Polsce i za granicą. Jako firma odpowiedzialna społecznie troszczymy się o ludzi i środowisko wokół nas. Realizując strategię „Postaw na piwo” promujemy odpowiedzialność i umiarkowanie w spożywaniu alkoholu, szkolimy sprzedawców, oszczędzamy wodę i energię, wspieramy rozwój naszych partnerów biznesowych i angażujemy się w wolontariat. Mamy zaszczyt być sponsorem wielu lokalnych klubów sportowych, wspierając dyscypliny takie, jak piłka nożna, piłka ręczna, hokej czy żużel.