Privacy Director, Assistance Services

at  International SOS

ABOUT YOU

• Degree Level Qualification
• Data Protection Practitioner Certification or equivalent (eg. CIPP/E, CIPM, CIPT
• Extensive Privacy and Data Protection Experience
• Regulatory Compliance Expertise
• Pragmatic Risk Management
• Strategic Leadership in Privacy Programmes
• Technical Knowledge in Privacy Engineering
• Project Management in Complex Environments
• Vendor and Third-Party Risk Management
• Crisis Management and Incident Response
• Training and Development

ABOUT THE ROLE

We are looking for an experienced Privacy Director in Chiswick, West London. You will be supporting the Group Head of Privacy with the development and strategic direction of the Assistance Services privacy programme, as well as those of our Group Finance and IT functions. This is an excellent opportunity for an experienced, hands on, solutions focused Privacy expert, who is looking to work for a truly global organisation.

KEY RESPONSIBILITIES

• Strategically Oversee and Advise on Privacy Risk Mitigation: Lead the identification and mitigation of privacy risks across new and existing products, services, and processes.
• Manage and Optimise Privacy Processes: Oversee the use of the centralised privacy management platform (e.g. OneTrust) to manage privacy processes efficiently.
• Lead Cross-Functional Privacy Projects: Coordinate and drive privacy-related projects across multiple business units and functions.
• Support and Enhance Third-Party Risk Management: Collaborate with Information Risk Management to evaluate and manage third-party vendors, ensuring their compliance with data protection regulations.
• Provide Regular Status Reports on the Privacy Programme: Regularly update senior leadership on the status of the privacy programme, including identified risks, remediation strategies, and ongoing compliance efforts.
• Monitor and Enhance Data Subject Rights Request (DSRR) Processes: Monitor Data Subject Rights Requests and handle inquiries from data subjects, clients, and other stakeholders.
• Stay Informed on Regulatory Changes and Best Practices: Continuously monitor changes in privacy regulations and industry best practices.
• Review and Develop Privacy Training Programmes: Collaborate with the learning and development teams to regularly review and enhance privacy training programmes.
• Act as a Privacy Lead in Incident Response: Serve as the primary point of contact for data incidents, guiding the organisation’s response efforts.