<p>Join our team as a Data Privacy Officer (DPO) and take the lead in shaping and safeguarding our organization's data privacy practices. In this high-impact role, you'll oversee the development, implementation, and ongoing management of our privacy program to ensure compliance with evolving regulations like the CCPA and other applicable laws. You'll play a vital role in building a culture of privacy by design, conducting internal audits, enhancing data protection strategies, and acting as the go-to expert on privacy-related matters-both internally and with external stakeholders. If you're passionate about data ethics, legal compliance, and proactive risk management, this is your opportunity to make a meaningful impact.</p> <p>What you will do as a Data Privacy Officer:</p> <ul> <li>Ensure compliance with applicable data protection regulations, including the GDPR, CCPA, HIPAA, or other relevant privacy laws. </li><li>Advise the organization on the regulatory landscape surrounding data privacy and its implications on business operations. </li><li>Lead and assist in preparing for and responding to privacy-related regulatory inquiries, audits, and assessments. </li><li>Develop, implement, and maintain data privacy policies, procedures, and practices to ensure compliance with relevant laws and regulations. </li><li>Review and update privacy policies and procedures periodically to ensure their alignment with changes in laws and industry best practices. </li><li>Ensure that data retention, handling, and storage practices are in line with organizational policies and regulatory requirements. </li><li>Conduct privacy and data protection training for employees, contractors, and third parties. </li><li>Promote a privacy-conscious culture within the organization and raise awareness about data privacy matters. </li><li>Serve as a point of contact for all employees regarding privacy concerns and questions. </li><li>Oversee the management of data subject rights requests (e.g., access, rectification, erasure, data portability, etc.). </li><li>Ensure that data subjects' rights are respected in a timely manner and in accordance with legal requirements. </li><li>Coordinate responses to data breach notifications and ensure that proper documentation and reporting mechanisms are in place. </li><li>Responsible for Risk Assessment and Data Protection Impact Assessments (DPIAs) </li><li>Conduct regular risk assessments and privacy impact assessments for new projects, processes, or initiatives involving personal data. </li><li>Advise business units on the privacy risks and mitigation strategies associated with new or existing data processing activities. </li><li>Ensure that data protection impact assessments (DPIAs) are conducted where necessary and that mitigation measures are implemented. </li><li>In conjunction with the Director of Information Security, coordinate the response to data privacy incidents, including data breaches, by following an established incident response plan. </li><li>Work with legal, IT, and compliance teams to investigate data breaches and manage notifications to regulators and affected individuals. </li><li>Ensure timely reporting of data breaches to regulatory bodies in accordance with applicable laws. </li><li>Evaluate data protection practices of third-party vendors and service providers through risk assessments and due diligence. </li><li>Ensure that data processing agreements (DPAs) are in place with all third parties and that they meet privacy and security requirements. </li><li>Continuously monitor the organization's data privacy and protection practices to ensure compliance with established policies and legal requirements. </li><li>Report findings of privacy audits and compliance reviews to senior management. </li><li>Work closely with internal Information Security team, legal, compliance officers, and IT personnel to align privacy and security strategies. </li><li>Collaborate with senior management to ensure that privacy risks are effectively managed and addressed. </li></ul> <p>To be successful as a Data Privacy Officer, you'll need:</p> <ul> <li>Bachelors Degree in Information Security, or a related field is required. </li><li>Proven experience in data privacy, compliance, or information security roles. </li><li>Strong understanding of global privacy regulations, including GDPR, CCPA, and other relevant data protection laws. </li><li>Experience with conducting data privacy risk assessments, audits, and DPIAs. </li><li>In-depth knowledge of data privacy principles and best practices. </li><li>Strong analytical, problem-solving, and decision-making skills. </li><li>Ability to communicate complex privacy issues clearly to stakeholders at all levels of the organization. </li><li>Strong project management skills and ability to handle multiple tasks simultaneously. </li><li>Ability to stand/walk for long periods of time and lift up to 21 - 30 pounds. </li></ul>