JOB SUMMARY
The role involves ensuring compliance with DPDP Act, handling privacy requests, and supporting the implementation of privacy frameworks across the organization. This will require candidate to work closely with stakeholders in different teams such as legal, compliance, security, digital technology, operations, HR, Distribution and other functional owners responsible for data processing for effective implementation of privacy initiatives. The role requires a candidate who is detail-oriented, proactive and resilient.
KEY RESPONSIBILITIES
- Act as a central point of coordination forprivacy-related requests and queries across multiple business and support functions
- Ensure adherence todata minimization principles, limiting collection and processing to what is necessary.
- Oversee and enforcedata retention and deletion schedules in line with regulatory and internal policy requirements.
- Act as thecentral point of coordination for driving review and closure of Master Service Agreements (MSA) and Data Processing Agreements (DPA), ensuring inclusion of required privacy and data protection clauses.
- Conduct annual refresh of DPIA, ROPA, DFD across all functions through Privacy tool
- Support implementation and monitoring ofprivacy policies, standards, and controls.
- Assist in vendor risk assessments and third-party privacy reviews
- Drive awareness and training programs on data privacy across teams
- Collaborate with cross functional teams to increase the overall maturity
- Implement monitoring mechanisms to track and report on privacy-related metrics
MEASURES OF SUCCESS
Improvement in privacy maturity for all functions
Annual refresh of privacy documentation
KEY RELATIONSHIPS (INTERNAL /EXTERNAL)
Business Functions, Third Parties and Control groups
DESIRED QUALIFICATION EXPERIENCE
Graduate/Post Graduate degree in Information management and security (pref. B. Tech/M.Tech/MS)
Familiarity with privacy regulations such asGDPR, India DPDP Act, or equivalent frameworks.
Understanding of Insurance industry will be preferred.
Having 3+ years of experience indata privacy, governance, or privacy operations.
Professional certification in privacy (e.g., CIPP, CIPT) is highly desirable.
Good understanding ofprivacy risk assessment and control frameworks.
Strong analytical, coordination, and problem-solving skills.
Effective communication, proactive, resilient and stakeholder management abilities.
Experience in working on data governance tools like Security AI
SKILLS AND COMPETENCIES:
Excellent leadership and communication skills.
Ability to balance business objectives with privacy requirements.
Proficient in collaborating across diverse teams, Businesses and functions.
Detail-oriented and capable of handling sensitive information with discretion
