Interested in joining a cause-driven, customer focused company dedicated to positively impacting the health of animals, people and the planet? Search our job listings below.
The Sr. Advisor – Chief Privacy Officer has accountability for the development, implementation, maintenance, and continual improvement of Elanco’s Global Privacy Program maintaining Elanco’s commitment to adherence with privacy laws and regulations. This is part of Elanco’s commitment to doing the right thing in the right way along with following the laws, regulations, industry codes, policies and procedures that govern our business, both of which are foundations of Elanco’s culture. Additionally, the Sr. Advisor – Chief Privacy Officer plays an important role in ensuring that the global privacy program is effective in safe guarding personal information in order to protect our company, brand, and reputation and maintain the trust of our customers, employees, and shareholders.
Functions, Duties, Tasks
The Sr. Advisor –Chief Privacy Officer is accountable for the following:
Establish a privacy program strategy, framework, and measures of performance based on Elanco’s business and risk profile.
Develop, implement, maintain, and continually improve Elanco’s Global Privacy Program in alignment with the defined strategy and framework in addition to laws, regulations, industry codes, policies and procedures that govern our business.
Establish processes associated with Elanco’s obligations as a controller of personal information, including but not limited to:
Assess the impact of processing activities on the protection of personal data.
Maintain records of processing activities.
Provide notice and/or consent to data subjects in a concise, transparent, intelligible, and easily accessible form, using clear and plain language.
Allow data subjects to exercise their rights of rectification, objection, erasure, restriction of processing, and data portability and ensure they are informed of the action taken related to their request.
Ensure contracts with processors include clear processing instructions and requirements to process personal information in accordance with applicable privacy laws.
Provide appropriate safeguards when personal information is transferred to a third country.
Establish a mechanism for receiving, documenting, tracking, investigating, and taking action on reports of unauthorized disclosures of personal information.
Ensure policies and procedures, training, communications, tools, and resources are readily accessible to all global employees to inform them of Elanco’s obligations as a controller of personal information and aid in performing those obligations in accordance with applicable privacy laws.
Work with Information Technology, Information Security, and other personnel to implement appropriate technical measures to ensure a level of security of personal information appropriate to the risk.
Advise employees across the organization on processing personal information in a manner that aligns with Elanco’s values and complies with applicable privacy regulations while maximizing its value.
Ensure required filings, notifications, or certifications to external regulatory bodies are submitted in a timely manner.
Routinely monitor privacy laws and regulations to ensure organizational awareness and compliance. Conduct gap analyses of Elanco’s privacy program to new or revised privacy laws, determine actions to be taken by the organization to ensure compliance with the privacy laws, and work with appropriate personnel to implement those actions.
Establish an effective privacy risk assessment and monitoring program to analyze and identify privacy program and business risks. Review trends and continually improve the privacy program.
Work with Ethics and Compliance, Human Resources, and/or Legal to address non-compliance with privacy policies and procedures.
Report on a periodic basis regarding the status of the privacy program to the Audit Committee of the Board of Directors and/or other leaders or committees.
Perform comprehensive due diligence of any acquisition targets prior to any mergers or acquisitions, as needed or as directed by the Chief Ethics and Compliance Officer.
Participate in continuing education opportunities to maintain expert knowledge of data protection law and practices in order to serve as a subject matter expert and advisor on privacy related matters to employees.
Participate in selected audits performed by Elanco auditing functions.
Minimum Qualification (education, experience and/or training, required certifications):
Bachelor’s degree minimum. Masters or advanced degree preferred.
Skills & Experience:
Demonstrated expertise in analyzing data privacy regulations in a global setting across a broad range of topics and scenarios and overseeing processes, procedures, and programs to ensure compliance with such regulations.
Strong understanding of risk management fundamentals/tools and the ability to deal with ambiguity.
Effective leadership and influencing skills (critical thinking, results oriented, etc.), including a strong reputation for integrity, objectivity, impartiality, fairness, sound judgment, and willingness to speak up.
Ability to partner effectively, with stakeholders in multiple geographies and positions within the company with a cross-cultural sensitivity and mindset.
Strong interpersonal and communication skills. Must understand how to influence and diplomatically challenge when needed.
External mindset for evaluating benchmarks and industry best practices for privacy programs in a global company.
High level of professional maturity and sensitivity to confidentiality.
Willingness to champion an idea or position despite dissent.
Privacy certification preferred.
Elanco is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status