Lead and collaborate in the formulation of policies related to the collection and processing of personally identifiable information, based on the Privacy & Data Protection Laws of the countries in which the company/its subsidiaries operate implement and monitor the data privacy policies and associated processes across functions and business units.
Proactively partner with functional groups (HR, CAO, IT etc.) to ensure that the adoption of new technologies, processes, services, and solutions are compliant with the applicable data privacy regulations
Assess the development & enhancements of internal processes & systems and recommend privacy-related controls.
Conduct employee awareness on lawful handling of personally identifiable information, as part of their work.
Identify risks and also plan and implement the risk mitigation plans
Lead the data breach handling process for effective addresal of privacy-related gaps (if any) reported, in the current process & systems.
Manage the process related to personal data access requests from individuals.
Assess subcontracting/outsourcing of any processing of personally identifiable information and recommend privacy-related controls (including the inclusion of appropriate clauses in the vendor contract.
Liaison with external Privacy and Data Protection Counsel for expert views and audits.
Identify and implement internal initiatives on Data Privacy.
Partner with the various teams on contracts for new products (including cloud-based) and recommend privacy-related features/controls, in summary, Privacy by Design.
Qualification & Experience
LLB, LLM
5 to 7 years of experience
Experience in dealing with transactional matters in the financial services industry