Data Privacy Officer H/F
Description
Avec plus de 200 collaborateurs, le Groupe ilem est une importante SSII en Suisse Romande.
ilem est spécialisée dans la gestion, la réalisation et l’optimisation des systèmes d’information des entreprises, garantit des prestations de qualité, apporte une expertise technologique, conçoit et développe des solutions innovantes implémentées en Suisse, en France et au Maroc.
Fondée sur des valeurs humaines fortes (Respect - Simplicité - Confiance - Qualité de Service - Ouverture d’Esprit) la stratégie d’ilem repose sur l’établissement d’un partenariat à long terme avec ses Clients et ses Collaborateurs.
Mission
- Constantly reviewing the organisation’s record of processing activities (RoPA) using its data privacy management system and the associated trackers in place for suppliers.
- Owning the organisation’s data privacy management platform, including taking responsibility for the budget, the supplier, etc.
- Assessing and investigating the organisation's data processing activities to identify any risks or gaps in compliance with data protection laws and regulations, as well as identifying systems, applications and business process owners.
- Working with the data privacy team to maintain and improve the organisation’s privacy programme across its entire life cycle, which includes:
o Developing and reviewing policies and guidelines to ensure the organisation’s compliance with data protection laws and regulations.
o Developing and delivering training sessions for employees on how to comply with data protection laws and regulations, particularly with regard to the handling and storage of personal data.
o Developing and reviewing the incident management and response plan for handling any privacy incidents that may occur in the course of the organisation's operations.
o Innovating and improving operational efficiency: streamlining compliance requests (e.g. requests to optimise data subjects).
- Partnering with all key business areas, in particular the ICT data architects and the IT security team, to ensure that data privacy issues are considered at the outset of all new projects, products and initiatives (i.e. privacy by design), in accordance with internal ICT processes.
- Contributing to and monitoring the implementation of appropriate technical and organisational security measures (TOMs).
- Monitoring existing ICT solutions and processes with regard to data privacy, proposing mitigations to the relevant service owners (both business and ICT) and advising on technological options available to assist stakeholders with data protection compliance.
- Establishing trusting relationships with service owners and being recognised as the go-to ICT person for data privacy matters.
- Handling enquiries and issues relating to data privacy practices, withdrawal of consent, the right to be forgotten and other rights of data subjects, in cooperation with the data privacy team.
- Staying informed and educating the management and staff on the importance of data privacy compliance to ensure accountability within the organisation.
- Managing consultants and temporary staff.
Profil
- 5+ years’ experience in technology & data privacy.
- Experience with B2C ICT solutions (websites, gaming, social media integrations) and B2C users (fans, ticket holders, etc.).
- Similar data privacy experience within Swiss- or European-based companies.
- Understanding of technical operations and measures related to data protection and data security.
- Knowledge of General Data Protection Regulation (GDPR) and Federal Act on Data Protection (FADP) > Advanced.
- AExperience with a data privacy and consent management software (OneTrust would be a plus) > Advanced.
- English > Advanced
- French > Intermediate
- Experience working in a multi-cultural environment.
- Open-minded, positive attitude.
Location: Nyon
Start date : January 2025