The Role
Reporting to the Senior Manager, Contract & Compliance, the Privacy Specialist will build, implement, and operate the T&T Canada & US privacy programs. The Privacy Specialist will act as a subject matter expert and will provide guidance in addition to performing risk assessments and ensuring that those business groups privacy maturity is in-line with that of the overall enterprise privacy program. The overall objective of the Privacy Specialist is to ensure that all existing and future privacy related policies, rules and procedures are following the legislation of applicable jurisdictions.
Major Responsibilities
- Execute the enterprise privacy program components (e.g. content development, privacy training, privacy assessments and reporting) to fit for purpose for retail and shared service business units.
- Provide timely, ongoing, and accurate privacy advice on privacy, CASL, US related legislation and regulations and data ethics risks and the identifying the appropriate mitigating controls.
- Perform risk assessments on new initiatives that involve a new collection, use and disclosures of personal information and on new suppliers / vendors entering the parent company environment.
- Support the development and implementation, on-going maintenance of privacy policies, standards, procedures, guidelines and tools based on laws, industry standards, and business objectives.
- Identify and manage privacy risks in day-to-day operations, including within new and existing projects.
- Support the development, implementation, training, and management of privacy awareness, and compliance program working in collaboration with inside and outside stakeholders.
- Tracks and report privacy risks, remediation activities, and status of key program activities.
- Manage privacy breach activities from intake, escalation, investigation, to resolution.
- Stay abreast of Canadian and the US privacy developments and monitor advancements in technology including data protection technologies to ensure organizational adaptation and compliance.
- Any other tasks as needed and assigned.
Knowledge, Skills and Ability Requirements
- Post-secondary college or university graduate with certificate in CIPP.
- 2-3 years of working experience in a risk management or related functions.
- Well versed with Canadian and US privacy laws.
- Working knowledge of risk management governance and practices with a particular focus on private sector privacy laws.
- An understanding of Generally Accepted Privacy Principles and able to apply principles to the operation of the business.
- Excellent communication skills in English (written and verbal) and interpersonal skills.
- Strong analytical capabilities, ability to work under pressure and think outside of the box.
- Strong time management, organization, and collaboration skills.
- Able to communicate in French and/or Chinese is an asset.
- Travel may be required.
- Accommodation is available upon requests for applicants with disabilities.
Benefits
- Quarterly discretionary bonus
- Life / AD&D insurance
- Extended health/dental/vision care
- Retirement benefit
- Paid annual/sick/marriage/bereavement leave
- Subsidized staff meal
- In-store staff purchase discount
Shift
5-day work week (Monday to Friday), 9:00am – 5:30pm
Safety Statement
Safety continues to be T&T Supermarket’s top priority. We’ve established health and safety policies and measures to ensure our Stores, Food Processing & Production Centres and Warehouse & Distribution are as safe as possible.