Privacy Risk & Compliance Officer

Overview Salary:€60k Defendant on experience

Location: Dublin East Point Business Park

Contract: Permanent

Hours: 37.5 hours perweek. Flexibility required

PrivacyRisk &Compliance Officer

ThePrivacyRisk &Compliance Officer, formerly known asPRCO,is responsible forthe overall administration and execution ofthe globalcompliance,riskand privacy programsfor the country and or subsidiary.This position reports directly into the countrymanagement structureand has adirectline reporting relationshiptothe RegionalPrivacy Officer,the Head ofRiskand the Head of Compliance.

Responsibilities

Responsibilities will include:

ThePRCOis responsible and accountable for the following activities as well asother activitiesat the direction of the local leadership team or theRegional Privacy Officer, the Head ofRiskand the Head of Compliance.

• Privacy Management

• Privacy Notice/ConsentFormCommunication andReporting -Ensure all new hires receive privacy notice/consent upon hire and all employees receive updated noticesand consentsas needed,working with local HR and recruiting teams.

• Monitor and Track communication/disclosure ofappropriate notices(when required)to ensurethey are received byall employees

• Monitor and tracking ofdistribution and receipt ofconsent (whenrequired)

• Evaluate and coordinate with theGlobalPrivacy, Risk& ComplianceOfficeonthe communication ofanyprivacy notice and/orconsent

• Ongoing monitoring ofallpersonal dataprocessing activitiesfor the country or subsidiaryand escalating new or changes to existingpersonal dataprocessingactivityto theGlobalPrivacy& ComplianceOffice.

• Records of Processing(ROP) Completion & Ongoing Updates

• Ensure completion ofROP's withinOneTrustfor Controller & ProcessorROP's, including:

• Ensure new or changes to existingpersonal dataprocessing activitiesare appropriately documented and/or updated(controller and processor)

• Ensure new local clients or changes to existing local client processing activities are appropriately documented and/or updated

• Incoordination with local/regionalIT, review ITROP's to ensureaccuracy,completeness,andare regularlyupdated

• In coordination withtheappropriate SAM,ensurethat data processing activities associated withnew global clients are documented in theROPProcessor andchanges to existingglobal client processing activities are appropriately documentedand updatedin theROPProcessor

• In coordination withlocal/regional Functions, ensure that new personal data processing activities are appropriately documented in theROPController and is regularly updated with any changes to existing activities.

• Records of Processing(ROP) Quality Review

• Review completedROP's to ensure completeness and accuracy

• Coordinate with functional team leads as necessary to ensure accuracy

• ClientContracts

• In coordination with SAM or local Account Managers, ensure existing clientshave been notifiedregardingdataprivacy amendments, the negotiation process has beeninitiated,andclientcontracts have been updatedwith data privacy amendmentsas needed

• In coordination with Business Development, SAM, or local Account Managers, asappropriate, ensure liaison with the Legal Department so that contracts with new clients include theappropriate dataprivacyand complianceprovisions.

• Report to theGlobalPrivacy, Risk& ComplianceOffice as requested on the status of client contract data privacyand complianceprovisionsnegotiations.

• Vendor Due Diligence Review

• Ensure the Privacyand ComplianceDue Diligence processesareconducted on allexisting, as well as newvendors for the country or subsidiary - working with both local and global procurement

• In accordance withthe processestablishedby theGlobalPrivacy& ComplianceOffice, reviewandapprovecompleted Vendor Due Diligence Questionnaires,or escalate as neededto appropriate the SVP of Privacyor CPOand Regional Privacy Officer,

• In coordination with local Procurement, ensure that the Privacyand ComplianceDue Diligence processesarecompletedprior toany newvendor contractexecution

Reporting

Provide specificreportingmetrics as required by theGlobalPrivacy, Risk& ComplianceOffice on a regular, consistent basis.

• New Business

• Support client bid activity,assistingwith pre-sale conversations about all elements of PRCO role and business policies

• Support client due diligence activity

• Deliver all go live activity to the TP control framework

• Compliance Management

• Ensure the implementation,maintenanceandmonitoring ofthe Global Compliance Framework within the area of responsibility.

• Ongoing monitoring and tracking of applicable local laws, regulations and legal obligationsin the fields of risk, compliance andprivacy,and report new or amendments to applicable laws,regulations,or legal obligationsin the fields of risk, compliance and privacyto the Global Privacy, Risk& Compliance Office, as requested.

• Act as point of contact for BCR/GDPR and other privacy and compliance related audits.

• Regularlymeasureandanalyze the performanceofPrivacy, Riskand Compliance systems,assess the efficiency ofprivacy and compliancecontrolsand recommend effective improvements.

• Identifyrisks or non-conformity issues in relation to Global Privacy and Compliancepolicies,proceduresand processes.

• Together with the Global Privacy, Riskand Compliance Office, provide support to TP subsidiary toidentifycompliance issues and provide guidance asappropriate.

• Keep abreast of regulatory developments within or outside of TP as well as evolving best practices in compliance control and risk management.

• DocumentPrivacy, Riskand Compliance systemsand prepare reports for Global Privacy, Riskand Compliance Office, senior management and together with the Global Privacy, Riskand Compliance Office, external regulatory bodies asappropriate.

• Ensure thatall required Privacy and Compliance training's are delivered to relevant personnel.

• Oversight of country level operational compliance to internal TP standards, working across all departments and supporting local senior leaders to ensure compliance

• RiskManagement

The PRCO willbe responsible forthe implementation and maintenance of the risk management framework within the area of responsibility in-line with our strategic plans. The role will include developing andmaintainingdetailed risk management processes and working with key business stakeholders tofacilitatethe embedding of these. It also includes review of control effectiveness and monitoring of mitigation action plans. The PRCO is the key point of contact for risk reporting to the Global Risk Team, for ad-hoc incidentreportingand for the escalation of significant risk events.

• Deployment and maintenance oftheRisk Management Framework. Ensure this is embedded in core processes and individual roles

• Identification and assessment of risks within the scope of the PRCO

• Work with management teams, riskownersand others to ensure risks and internal controls are documented, current and complete

• Work with local teams to document and roll-out mitigation plans

• Delivery ofaccurateand complete Risk Registers

• Provide regular updates on Risks and Controls to the Global Risk Team

• Guide local teams and risk owners on the Risk Management Process

• Promote a culture of risk awareness to the local management, ensure clear understanding of theobjectivesand the importance of the risk management and the internal controls, and explain the consequences of unmanaged risks

• Provide guidance to local points of contact in identification and evaluation of risks

• Provide guidanceon the correct use of Risk Categories

• Challenge risk information where needed. Ensure that all relevant details are reported for complete Risk evaluation and monitoring

• Lead the documentation,communicationand implementation of the Teleperformance Risk Framework

• Develop,maintainand communicate detailed risk management processes, including reviews of controls

• Review, assess and report risks and issuesidentifiedor reported by the business in-line with the process andassistthe business in defining and agreeing remedial action whererequired

• Review controls for effectiveness and manage risk deliverables

• Gather,analyzeand report on financial risk exposures where applicable

• Challenge and periodically review controls, recommending and agreeing remedial action whererequired

• Develop programs of work that encourage managers and employees to use the risk management and controls systems in an effective way

• Encourage and drive quality and continuous improvement of processes used across the business

• Respondsto risk management inquiries and consultation requests

Location- Near Dublin Office

Qualificationsand experience

• Integrity and commitment to compliance

. click apply for full job details