Evinova - Director, Data Privacy & Governance

Introduction to Role:

The EvinovaDirector, Data Privacy & Governance provides both strategic oversight to meet Evinova’s privacy responsibilities and practical daily privacy support to meet the demands of Evinova’s growing global healthtech business and expanding customer base as well as be responsible for the Data Governance program emphasising Security, Privacy, and AI.

This role reports directly to the EvinovaHead of Quality, Compliance, and Audit, working closely with the Cyber Security, Legal, Product, and Delivery teams. 

This role will be the central point of contact for data subjects and supervisory authorities in relevant markets, including in the EU and Switzerland.  In addition, this role is responsible for global horizon scanning and providing advice and oversight based upon strong subject matter expertise and manage the relationship with Evinova’s external Data Protection Officer for cases that warrant it.Furthermore this role will help build out and maintain Evinova ISO 27701 controls and Statement of Applicability to obtain and maintain certification and ensure privacy aspects of Evinova customer audits are fully supported and may support privacy aspects of contract negotiations with new customers.

Accountabilities

Evinova representative for data subjects and supervisory authorities:

• Point of contact for supervisory authorities related to Evinova data processing activities and data subjects

• Maintain required licenses, registrations and other local regulatory requirements to enable compliant processing and transfer of personal data within the Evinova Group and among Evinova partners/vendors

• Partner with DPO for responses to subject access requests

• Ensure support to data protection impact assessments and serve as contact to authorities as required on data protection impact assessments and other privacy impact assessments

• Reporting of significant and/or serious breaches (whether requiring external notice or otherwise), including advice on remediation measure, related oversight and trend analysis

• Partner with Quality, Compliance, Cyber Security, Product and, Deliveryo monitor compliance with applicable data protection and privacy laws and help develop a robust privacy training programme for the Evinovaworkforce andCollaborating with key stakeholders from product, quality, compliance, IT and the Evinova Business, to fufill his/her responsibilities and to foster a global privacy mindset across Evinova

• Horizon scanning for key jurisdictions globally, including China in consultation with legal, external counsel and local resources as needed

• Support privacy aspects of customer contract negotiations, including drafting of data processing agreements and appropriate international transfer mechanisms

• Develops and operationalizes data governance framework.

• Owns the catalogue of Data Domains and assigned accountable data owners

• Accountable for oversight and improvement of data governance maturity.

• Drives Evinova data culture and educate the importance of good information management principles to internal and external business stakeholders.

• Oversees of data usage in analytics, business intelligence, data science and AI solutions.

• Manages data retention requirements and oversees the execution

Crucial Skills/Experience:

• Legal degree or qualifications with 10 years’ experience in privacy law and/or Data Privacy Programs.

• In-depth knowledge of GDPR, EU/EEA local data protection legislation, UK Privacy Act and UK GDPR, familiarity with US, China and other local data privacy regulations

• Significant experience and knowledge of privacy program elements and best practices/tools and Data Governance frameworks

• Significant experience in either the technology and/or life sciences sector, with prior experience supporting digital health productsworking for a Healthtech or SaaS solution provider

• Excellent analytical, written and oral communications skills

• Strong collaborative, partnering, and interpersonal skills, ability to influence across different levels and sectors of the organisation including at Board level

• High ethical standards, trustworthy, operating with absolute discretion

• Demonstrated ability to remain independent and objective while collaborating effectively with stakeholders 

• Comfortable operating in ambiguity in a fast paced work environment