Privacy Operations Officer - Milano, Italia - DLL

DLL

Azienda verificata

Milano, Italia

3 settimane fa

Inviato da:

Piero Bianchi

Reclutatore di talenti per beBee

Descrizione

Our organisation

DLL is a global asset finance partner enabling businesses to more easily access equipment, technology and software to help them grow.

We deliver sustainable and effective financing solutions, along with insights and advice, that drive smarter and more economical use of capital assets.

With more than 50 years of industry experience, we understand the unique needs of our partners and customers around the world and work hard to provide flexible solutions to meet their objectives.

Headquartered in Eindhoven, the Netherlands, DLL is a wholly owned subsidiary of Rabobank Group.

Your Role

As the
Privacy Operations Officer you will work within the Europe Operations team leading the first line of responsibility on all privacy related matters in Italy to ensure DLL acts in compliance with data protection regulation, protecting sensitive customer data and maintaining the trust of our customers and partners.

Your function

Participate and provide support to the Europe Privacy Operations Lead, Senior Privacy Operations Officer and Global Privacy Office in relation to any regulatory examinations and internal audits relating to
Drive the Privacy vision and mission for all matters embedding the group privacy framework into the business, complying with local privacy laws and the DLL Global Privacy Framework.
Direct, oversee and coordinate privacy programs and projects with the Europe Privacy Operations team, the Global Privacy Office and senior executives to ensure consistency across DLL.
Provide support to the EU Privacy Lead & Senior Privacy Operations Officers on Privacy matters across Spain, Portugal and France
Manage and update the local Record of Processing Activity (ROPA) in the global privacy management system (One Trust)
Follow the Global Procedure on Data Breach Management to handle and investigate privacy incidents, breaches, and complaints promptly and effectively.
Conduct privacy risk and data protection impact assessments (DPIAs) to identify privacy risks associated with new projects, systems, or processes in accordance with the Global Privacy framework.
Manage all Data Subject requests to exercise rights of access, deletion, objection, rectification, and information.
Responsible for ensuring compliant sharing of personal data with external parties.
Work with local legal to ensure data processing agreements are in place for relevant supplier relationships to comply with the requirements of GDPR.
Responsible for monitoring changes to privacy legislation, and implementing such changes to the privacy policies, statements and practices in Italy.
Provide support and advice in adherence to the Global Records Management Policy and Records Retention Schedule in coordination with other relevant stakeholders.
Ensure global privacy training is undertaken and provide training, advice and guidance to all departments regarding privacyrelated regulatory and best practice requirements. Raise Privacy awareness with the delivery of local training and awareness programs.
Manage all privacy related queries from internal stakeholders and external partners, suppliers and customers.
Work with the Risk team to monitor compliance with the Global Policies and relevant regulations by undertaking regular risk reviews according to the Risk Governance of DLL.
Provide support to the Information Security team to manage remediations in response to automated alerts of data loss.
Collaborate with different departments to integrate compliance, data protection, and risk management practices into daily operations.

Your profile Competencies**:

Critical Reasoning
Information Gathering and Analysis
Research & horizon scanning
Relationship Building
Communication
Collaborative Skills
Impact and Influence
Selfreliant initiative to direct own work schedule
Conceptual Thinking
Sound Business Judgment
Selfreliant in approach

Education and other credentials:

A bachelor's degree in law/business or related field acquired in the EU/UK.
Additional certifications in privacy, information security, information management, information technology, business, or related field would be an added advantage.
Certified Information Privacy Professional (CIPP) certification or equivalent qualification in (Desirable)

Experience:

24 Years of experience demonstrating an understanding of data privacy and data handling or at least 5 years of leadership experience with a focus on privacy compliance
Experience performing privacy and/or security assessments
Experience in data collection, analysis, and reporting
Experience drafting and implementing policies, procedures, and processes into an international organization
Experience in the financial services industry, with specific experience in equipment leasing and vendor finance (preferred)

Technical/Functional skills and knowledge: