The Data Privacy Manager will assist the Data Protection Officer (DPO) in implementing, maintaining, and monitoring data protection and privacy initiatives across the organization. This role involves ensuring compliance with applicable data protection laws and standards, fostering a privacy-conscious culture, and supporting operational privacy activities.
KEY RESPONSIBILITIES *
Data Protection Program Implementation : Support the DPO in developing and executing the organization's data protection and privacy strategy. Assist in the creation, review, and updates of privacy policies, procedures, and guidelines. Ensure alignment of privacy practices with regulatory requirements and internal frameworks.
Compliance Monitoring : Monitor adherence to data protection policies and procedures. Assist in maintaining records of processing activities (ROPA) and other compliance documentation. Conduct regular privacy assessments, audits, and gap analyses.
Training and Awareness : Design and deliver privacy training programs for employees. Develop tools and materials to raise awareness about privacy compliance. Provide advice and support to departments on privacy and data protection issues.
Data Breach Management : Assist in the identification, assessment, and management of data breaches. Coordinate breach notification procedures in line with legal requirements. Maintain an incident log and track resolution activities.
Data Principal Rights Management : Support the DPO in handling data subject access requests (DSARs) and ensuring timely responses. Assist in addressing queries related to privacy rights and data protection practices.
Vendor and Third-Party Management : Conduct data protection impact assessments (DPIAs) and third-party risk assessments. Review privacy clauses in vendor contracts and ensure compliance with data protection requirements.
Establishing a Privacy Governance Framework : Support in establishing a privacy governance framework within the organization to ensure that the privacy controls are diligently adhered.
Collaboration and Stakeholder Engagement : Liaise with IT, legal, HR, and other departments to embed privacy by design and default. Act as a point of contact for internal and external stakeholders on privacy-related matters.
MANDATORY SKILLS REQUIRED *
Analytical skills : Ability to assess privacy risks and design effective technological solutions.
Communication and interpersonal skills : Strong communication skills and to collaborate with cross-functional teams and explain technical concepts to non-technical stakeholders.
Problem-solving: Demonstrated ability to resolve complex technical privacy challenges.
Technical Knowledge : Proficiency in using data protection and GRC tools, Excel/Power BI, and knowledge of AI governance.
Qualifications
Education: Masters/Bachelor's degree in Information Security, IT, Business Administration, or a related field.
Certifications: Preferred certifications such as CIPP/E, CIPM, CIPT, CDPSE or equivalent.
