You will report directly to the Group Privacy Officer, and to the Head of Group Compliance for broader projects in the whole domain, liaising with internal clients and external providers, vendors and contractors for the implementation and enforcement of the Group’s Data Protection and Privacy policies and guidelines.
You will engage in :
Drafting and negotiating data processing agreements;
Assessing the risk within any processing activity, advising the management and internal clients on privacy topics;
Training our internal resources and resident providers;
Assisting our Internal Audit team within the privacy scenario, liaising with supervisory authorities;
Running Data Protection Impact Assessments, drafting policies and guidelines, monitoring governance, vendors’ qualification, data breach prevention, management and remediation;
Help coordinating the network of local privacy coordinators, monitoring the consistent implementation of the Group’s approach at local level.
Who we are looking for :
Master’s degree in law;
At least 7 years of legal experience in multinational contexts, among which at least 3 years of practice in the privacy field;
Deep knowledge of the data protection legislative framework, in particular in the EU context and including the main guidelines issued by the WP29 and the EDPB and the most relevant decisions of the CJEU;
Ability to communicate to large audiences.
Fluent in English written and spoken, other language is considered a plus.
Knowledge of MS Office;
Advanced knowledge of ICT solutions and tools, as well as of Cybersecurity fundamentals.
Requisition ID 43143 Job function Legal Country Luxembourg City Luxembourg