Job Description: The Data Privacy Officer (DPO) is responsible for overseeing and ensuring the organization’s data processing activities comply with applicable data protection laws and regulations. The DPO plays a crucial role in safeguarding personal data and managing privacy risks.
Key Responsibilities:
- Ensure the organization’s compliance with data protection laws and regulations, including with the National Privacy Commission or relevant local data protection laws;
- Develop and implement data protection policies, procedures, and guidelines;
- Monitor adherence to data protection standards within the organization and regularly review and update policies to maintain compliance;
- Conduct regular training sessions and workshops for employees to ensure awareness and understanding of data protection principles;
- Promote a culture of data privacy within the organization by leading initiatives to raise awareness;
- Conduct Data Privacy Impact Assessments for new projects, processes, or technologies to identify and mitigate potential data privacy risks;
- Serve as the primary point of contact for data breaches and incidents;
- Investigate data breaches and incidents, and implement corrective actions to prevent future occurrences;
- Coordinate the response to data breaches, including notification to the relevant authorities and affected individuals, as needed;
- Act as the point of contact between the organization and the National Privacy Commission;
- Ensure timely and accurate reporting to regulatory authorities, including data breach notifications;
- Provide advice to Senior Management and other departments on data protection and privacy issues;
- Work with our legal counsel on review of contacts, agreements, and data processing activities to ensure compliance with data protection laws;
- Maintain records of all data processing activities within the organization;
- Keep up-to-date with changes in data protection laws and best practices;
- Continuously assess and improve the organization’s data protection framework to adapt to evolving legal requirements and technological advancements;
- Conduct regular audits of data processing activities to ensure compliance with data protection policies and legal requirements;
- Identify areas of improvement and implement corrective actions where necessary;
- Provide regular reports to the Management on data protection compliance, risks, and incidents.
Qualifications:
- Graduate of Information Technology, Information Security, or a related field;
- Certified Data Protection Officer
- At least with 3-5 years’ experience as Data Protection Officer
The Belo Medical Group (BMG) places utmost importance to your right to privacy. BMG shall handle with utmost care all personal and sensitive information that you may provide or those that we may collect from you upon your use of the website in accordance with our . By submitting your application, scrolling this page or clicking any part of it, you hereby acknowledge that you have read and understood our and expressly consent to it.