Job Description
Global Communities is an international development non-profit organization. Our mission is to create long-lasting, positive and community-led change that improves the lives and livelihoods of vulnerable people across the globe.
Global Communities is seeking a Data Protection Specialist to join the Legal team at the headquarters in downtown Silver Spring, Maryland.
The Data Protection Specialist is responsible for the organization’s data privacy and protection function to ensure compliance with various regulations and best practices. S/he monitors compliance and data practices internally to ensure compliance with the applicable requirements under various data privacy regulations. S/he trains staff, conducts data protection impact assessments and internal audits. S/he serves as the primary contact for individuals whose personal data is processed by the organization.
In this role, the Data Protection Specialist will work closely with the Legal, Compliance, Information Technology, and Programs functions to develop and monitor policies and standards applicable to the business and in compliance with applicable data protection regulations. Duties include:
- Serves as the primary contact and liaison for all data protection related matters; coordinating with applicable government authorities when compelled by applicable protection regulations.
- Implements and maintains a privacy governance framework to manage data use in compliance with applicable data protection regulations, including developing policies, standards and templates for data collection, and assists with data mapping, and vendor management reviews.
- Works with key internal stakeholders in the review of projects, related data, and agreements to ensure compliance with local data privacy laws, and where necessary, complete and advise on privacy impact assessments.
- Reviews vendor contracts (including Model Clauses) and consents needed to implement projects in partnership with the organization’s Procurement and Information Security functions, and ensures filing requirements with local regulators are achieved.
- Participates in the Data and Information Technology Governance Committees.
- Develops and delivers privacy training to various business functions.
- Coordinates and conducts data privacy audits.
- Collaborates with the Information Security function(s) to maintain records of all data assets and exports and maintains a data security incident management plan to ensure timely remediation of incidents including impact assessments, security breach response, complaints, claims or notifications, and responds to subject access requests (SARs).
- Works with designated attorneys across the organization and, where necessary, outside counsel to help advise on local data privacy law issues.
- Some international travel may be required.
- Other duties as assigned.
- Master’s degree and a minimum of two years’ professional work experience relevant to the scope of this position; or a Bachelor’s degree and a minimum of 5 years’ professional work experience relevant to the scope of this position.
- Professional work experience must include the following: developing policy and compliance training; demonstrated understanding and application of data privacy laws; and working within a compliance, legal, audit/and or risk function with recent experience in privacy compliance.
- Must have experience working in a global organization.
- Data Protection and/or Privacy certification such as, but not limited to, CIPP, CIPT, ISEB is preferred.
- Experience in a non-profit or non-governmental organization preferred.
- Must have U.S. work authorization.
Global Communities is an equal opportunity employer that values diversity at all levels. EOE/AA - Minorities/Females/Veterans/Individual with Disabilities.
