1. Accueil
  2. Data Privacy Officer (H/F) - Paris

Les offres de “Axa”

Expire bientôt
Axa

Data Privacy Officer (H/F) - Paris

  • CDI
  • Paris (Paris)
  • Développement informatique
Postuler maintenant

Description de l'offre

The DPO will be part of a General Secretary team, at AXA Next / Innovation Center, the department in charge of developing new business models at scale as sustainable potential of growth for AXA, under the leadership of the Chief Innovation Officer. DPOs are the second line of defense for Data Privacy (also known as Data Protection) with the dual reporting line to the GDPO.

The DPO is the initial contact person for any Data Privacy matters or issues for the department. He/ She has an advisory role and supports project teams, assuring that the GDPR rules are implemented (“privacy by design”).

The DPO sets-up and follows the processes related to data privacy (privacy notices, contracts etc.)

Your main missions will be the following:

· Developing local Data Privacy Guidance and, where applicable, ensuring that any approved exemptions from this Guidance are included in the local Guidance;
· Monitoring both local and other relevant Data Privacy related regulations impacting the AXA Group company and adapting the local Data Privacy Guidance to ensure compliance with regulatory requirements;
· Training and providing consultative advice to all the areas and departments of the AXA Group company with regard to Data Privacy matters;
· Coordination with the local Risk, Information Security, Compliance, Legal, HR, Physical Security, Operations, Finance and Internal Audit functions on Data Privacy matters;
· Communication and reporting to the local data protection authority and other relevant regulators, attendance at data protection authority inspections, handling audit submissions and other information submission requirements;
· If required by local regulation, including in relevant local Guidance documents obligation/ responsibility for supporting and controlling a general data protection register (which has to be created by each Data Controller, containing all data processing applications in use and current information about purpose);
· Collaboration with the unit(s) responsible to manage requests of Data Subjects (i.e. rights of access, rectification, cancellation and similar requests);
· Support on drafting internal or external confidentiality agreements related to data,
· Reviewing and monitoring business activities and vendors’ contracting/management to ensure compliance with local Data Privacy legislation and AXA Guidance requirements;
· Attendance at Data Privacy, Security or similar Committees;
· Coordination and management of responses to incidents involving Personal Data (e.g. unauthorized access or disclosure);
· Adopting and implementing detailed requirements or guidelines to ensure a compliant handling of specific matters as deemed necessary, such as:
· Marketing activities. Whether the AXA Group companies can use Personal Data for marketing activities. Right of Data Subject to opt out of receiving such material;
· Sensitive Personal Data. Greater emphasis on whether and how to process/manage Sensitive Personal Data: e.g. access to sensitive medical data;
· Information of clients, employees and other data subjects;
· Complaints procedure. Detailed guidance as to how clients, employees and other data subjects can exercise any rights they may have under local law to complain about the way their Personal Data is being handled.
· Inclusion in project and process sign-off procedures and providing Data Privacy sign-off when satisfied that each project or process is compliant with the Guidance and applicable local requirements;
· Ensuring on a regular basis that data processing applications and processes are compliant with local Data Privacy legislation and AXA Guidance requirements, notably through establishing and ensuring execution of a privacy control plan;
· Writing, reviewing and implementing of common deliverables as agreed with GDPO;
· Fulfilling DPO role in the identification and maintenance of an inventory of Personal Data repositories across information systems as per the data classification policy;
· Keeping Management informed about their responsibilities regarding Data Privacy and this Guidance.

Profil recherché

Qualifications :

As an Expert in Data Privacy / Protection matters, you have at least 7 years of professional experience in legal or IT of witch minimum 3 years in Data privacy role.

The following Key Competencies are required for this position:

- Overall Data Privacy Knowledge (Legal and Technical)

- Locally recognized qualification (Master’s degree in Legal or IT or IAPP certification or DPA courses)

- Local certification if requested by local law (before or supported in the job)

- Business acumen

- Legal skills

- IT general skills

- Risk management

- Audit general skills Relational Skills:

- Analytical thinking

- Local language(s) fluent

- Reliable

- Communication and social skills

- English fluent

Faire de chaque avenir une réussite.
  • Annuaire emplois
  • Annuaire entreprises
  • Événements
    •