Current Opportunities | Search Form

Compliance & Privacy Officer

Job ID: 7609

Level: Intermediate

Description:

Our non-profit client is looking for a full-time Compliance & Privacy Officer.

JOB SUMMARY

The Compliance & Privacy Officer ensures that business practices related to general organizational compliance and quality meet legislative, regulatory and contractual requirements, international standards and best practices. 

This position is responsible for fostering a culture of compliance and quality with the support of management and working with all employees to ensure overall compliance and quality. It is also responsible for following up on all findings and corrective and preventative action items as required, and works with external parties in any compliance reviews or investigations as necessary. 

The Compliance & Privacy Officer is required to stay up-to-date with both internal and external changes in business activities, technology, legislative, regulatory and contractual requirements, and best practices to ensure organizational adaptation and compliance, and to provide updates and escalate critical issues/concerns, as required.

JOB ACCOUNTABILITIES

COMPLIANCE

  • Developing, maintaining, and monitoring a quality program to improve general organizational compliance and quality.
  • Developing, implementing, monitoring, and improving the general quality program as necessary, including: 
    • Developing and updating general organizational policies and procedures [e.g., processes regarding the management of policies, SOPs and forms, documentation of training, information security (non-technical), conflicts of interest, whistleblowing, Canadian Anti-Spam Legislation (CASL), policy and procedure deviations, and complaints]; and 
    • Providing training and reminders to all employees and applicable third parties. 
  • Providing support to improve the compliance and quality of process owners’ specific and critical activities, as required. This includes but is not limited to coordinating and documenting information security incidents and reviewing and revising board and departmental policies and SOPs. 
  • Support with contracts and agreements inclusive of advising on contractual requirements, drafting, reviewing and updating templates; 
  • Monitoring compliance with Imagine Canada’s Standards Program, and writing and submitting reports annually in order to maintain accreditation; and 
  • Performing internal reviews of Praxis’ critical activities upon request of senior management. 

PRIVACY


  • Maintains a privacy management program that is accountable and abides by Canadian federal, provincial and territorial legislation and regulations, international standards and best practices to ensure compliance with: 
    • Privacy legislation for all jurisdictions within which Praxis currently operates and could possibly operate in the future; and 
    • Praxis’ contractual requirements. 
  • Monitoring privacy compliance, assessing effectiveness and revising program controls as necessary, including but not limited to: 
    • Developing and updating the privacy policy and related Standard Operating Procedures (SOPs); 
    • Developing and providing orientation and refresher privacy training and awareness to all employees and applicable third parties or providing them with alternative training;
    • Developing, updating and reviewing Data Sharing Agreement (or similar); 
    • Performing internal privacy reviews/audits; and
    • Ensuring risk assessments are performed where necessary, i.e. third-party vetting, privacy impact assessments (PIAs).

OTHER PRIMARY DUTIES

  • Coordinating and following up on external PIAs, audits and inspections;
  • Managing privacy breaches, inquiries, and complaints;
  • Supporting programs and systems at the direction of the Director of Accountability & Impactand in collaboration with other internal stakeholders to enhance the effectiveness of risk mitigation for all business functions, as required; and • Liaising with external legal counsel with regard to compliance, contracts and other issues, as required.

QUALIFICATIONS

Education: Undergraduate degree in a relevant area of study

Certification/Designation

  • Formal training and/or certification in privacy is desirable (such as applicable IAPP certification)
  • Formal training and/or certification in contract law, quality assurance and/or clinical research an asset

Experience

  • At least 3 years of compliance and/or quality assurance experience in a complex environment 
  • Experience with information security including data, security, policies and agreements
  • Experience with privacy issues related to managing research data, data de-identification, data access requests
  • Experience with contracts management

Skills/Behaviours

  • Strong organizational and adaptability skills to manage a diverse workload and multiple projects at the same time and keep track of multiple and varying regulatory and contractual obligations, with minimum supervision
  • Critical thinking skills and high attention to detail
  • Superior technical writing skills and proficiency with MS Word, Excel, and PowerPoint
  • Training and presentation skills an asset

An equivalent combination of education, experience and skills/behaviors will be considered.

SALARY

$71,000-$96,000 per annum dependent on experience.

Send your resume via email to info@evalee.ca