Pearson Director of Data Privacy/Senior Privacy Counsel (Europe) in London, United Kingdom
Director of Data Privacy/Senior Privacy Counsel (Europe)
At Pearson, we’re committed to a world that’s always learning and to our talented team who makes it all possible. From bringing lectures vividly to life to turning textbooks into laptop lessons, we are always re-examining the way people learn best, whether it’s one child in our own backyard or an education community across the globe.We are bold thinkers and standout innovators who motivate each other to explore new frontiers in an environment that supports and inspires us to always be better. By pushing the boundaries of technology — and each other to surpass these boundaries — we create seeds of learning that become the catalyst for the world’s innovations, personal and global, large and small.
Description of Role
Reportingto the Chief Privacy Officer, this position serves as the European data privacylead to support Pearson’s business and the work of the Data Privacy Office inestablishing and maintaining compliance standards and Pearson’s global privacyprogram in Europe. The role also addresses day to day legal, contractual andregulatory matters involving data privacy in Europe and provides strategicadvice and guidance.
Serveas the lead contact on data protection and privacy matters in Europe, includingPearson’s GDPR program.
Advise the business on European legal compliance requirementsapplicable to the privacy and management of the personal information ofcustomers, employees and other individuals with whom the company interacts andrelated confidential personal information.
Support the design,establishment and maintenance ofPearson’s global data privacy program andcompliance standards to comport with legal compliance requirements for Europe, workingin close collaboration with the Chief Privacy Officer.
Advise andcollaborate with the Compliance, Internal Audit and Security functions concerningEuropean data privacy assessment, audit, evaluation and remediationrequirements.
Conduct risk assessments and provide data protection advice on thirdparty data processors and vendor transactions and new programs applicable toPearson’s business in Europe.
Conduct data privacy risk assessments of Pearson products and serviceofferings in Europe.
Assess the impact of newand existing regulations or laws on Pearson’s existing operations andofferings; providing advice to the Technology, Product and other relevantbusiness teams to foster privacy by design and alignment with applicable legalrequirements and corporate data protection policies and standards.
Advise on therequirements and restrictions for international transfer of personal data by Pearsonand its contracting parties.
Provide guidanceand advice on appropriate data protection terms for vendors, supplier, customerand employee agreements, as well as RFP’s, bids, and strategic business partnerships.
Support critical incident management processes in addressing suspectedor actual data privacy and security incidents in Europe.Assess whether suchprivacy and security incidents potentially involve personal or sensitive data, providecounsel on the appropriate containment, investigation and remediation of any breaches;and advise on notification and regulatory reporting requirements, as well asrelevant communications, working in collaboration with Corporate Affairs andrelevant business teams.
Provide counselto the Chief Privacy Officer, as well as Corporate Affairs, the CISO and otherrelevant stakeholders, in formulating and articulating Pearson’s strategicvision and position on the proper use and protection of personal information inEurope. Assist Corporate Affairs in representing Pearson in public policy andregulatory discourse on data protection and privacy in Europe, and addressingcomplaints and inquiries from the media, customers, students and parents in Europeconcerning data protection and privacy.
Provide training andeducation to legal staff, management and employees relating to data privacy andprotection in Europe, including key legal issues, laws and regulations,corporate policies and other relevant matters. Support the development and delivery of relevant privacy awareness andtraining initiatives tobuild privacy awareness into Pearson’scorporate culture.
Remaincurrent on legal, regulatory, industry, political and macroeconomicdevelopments affecting data protection and privacy in Europe.
This position requires a degree from awell-regarded and accredited international university.
The individual in this role must be an experienced lawyer orprivacy professional with the background, demonstrable presence andinterpersonal skills sufficient to function successfully in a highly visibleand challenging position. It is strongly preferred that he/she brings thefollowing to the role:
A minimum of 4 years as a practicing privacy lawyer orprofessional, preferably with a corporation, in the education, assessment, publishingor digital media sectors.
Detailed knowledge of data protection/privacyrequirements, laws and regulations in Europe, including the GDPR, andexperience of providing advice relating to information technology serviceproviders and vendors in Europe.
Theability to work collaboratively and to engage and influence in a matrixorganization.
Strong interpersonal and influencing skills which canbe applied to both internal and external relationships, with the ability toreconcile compliance requirements with business needs as far as is possible.
Excellent written and oral communication skills. Adept at analyzing and interpreting laws andregulations. Attention to detail.
Exemplarypersonal and professional integrity and business ethics.Exercisesdiscretion and maintains confidentiality of sensitive information.
Ability to make autonomous decisions that are strategically of ahigh level of risk to the organization.
Ability to assess risk to the organization; strong understandingof business needs.
Ability to make judgment calls on own; a seasoned professional.
Ability to interact with senior leaders of the business.
Strong advocacy and negotiation skills. Able to engender trust,respect and confidence.
Primary Location: GB-GB-London
Work Locations: GB-London-80 Strand 80 Strand London WC2R 0RL
Employee Status: Regular Employee
Job Type: Standard
Shift: Day Job
Job Posting: Apr 20, 2017