Regional Data officer - GC

  • CDI
  • Chine
  • Shanghai
  • Audit & Risques
  • Minimum 6 ans
  • Hermès China

Main responsibilities

<h3><span style="font-size: 10px;">1. Ensure compliance with applicable law when developing and implementing policies and processes for handling personal data.</span></h3> <h3><span style="font-size: 10px;">2. Monitor the development of data protection regulations and practices.</span></h3> <h3><span style="font-size: 10px;">3. Foster a data protection culture among employees and communicate personal data protection policies and processes to employees, contractors and business partners.</span></h3> <h3><span style="font-size: 10px;">4. Establish, maintain and update the list of personal information controlled by the company.</span></h3> <h3><span style="font-size: 10px;">5. Respond promptly to requests for:</span></h3> <ul> <li><span style="font-size: 10px;"> withdrawal of consent;</span></li> <li><span style="font-size: 10px;"> access, correction or deletion of personal data;</span></li> <li><span style="font-size: 10px;"> providing a copy; and</span></li> <li><span style="font-size: 10px;"> cancellation of account.</span></li> </ul> <h3><span style="font-size: 10px;">6. Conduct personal information security impact assessment or when there is major change on the business operations and applications involving personal information collection and processing.</span></h3> <h3><span style="font-size: 10px;">7. Liaise with the legal department to develop the privacy notice, and in respect of any request from a public agency for disclosure of personal information or any other data protection matter.</span></h3> <h3><span style="font-size: 10px;">8. Deal promptly with a suspected or actual breach of applicable law</span></h3> <h3><strong><span style="text-decoration: underline;"><span style="font-size: 12px; font-family: Calibri, sans-serif;">Major Activities:</span></span></strong></h3> <ul> <li><span style="font-size: 10px;">Liaise with Group DPO/Group Compliance officer to ensure that all group standards have been adopted within the Greater China.</span></li> <li><span style="font-size: 10px;">Design and Implementation of adequate and efficient processes of Data protection within Greater China.</span></li> <li><span style="font-size: 10px;">Routine review and reduce the risks of all compliance issues and strengthen current processes.</span></li> <li><span style="font-size: 10px;">Minimum 40% of travel is required.</span></li> </ul>


<ul> <li><span style="font-size: 10px;">Academic background: Must-Bachelor Degree</span></li> <li><span style="font-size: 10px;">Roughly 5-6 years working experience, 2-3 years’ experience in Big 4 with Compliance experience;</span></li> <li><span style="font-size: 10px;">Good knowledge of Cybersecurity laws, GDPR and other compliance topics preferably in retail;</span></li> <li><span style="font-size: 10px;">Excellent command of both English and Chinese</span></li> <li><span style="font-size: 10px;">Open, mature, good initiative and able to work under pressure</span></li> <li><span style="font-size: 10px;">Good communication skills;</span></li> <li><span style="font-size: 10px;">Good writing skills/ synthetic; Expert in MS-office software, especially Excel and PowerPoint</span></li> <li><span style="font-size: 10px;">Quick learner; good / solid understanding of related compliance regulations / risk management framework</span></li> <li><span style="font-size: 10px;">Ability to propose solutions or remediation actions.</span></li> </ul> <p> </p> <p> </p>