Regional Chief Privacy Officer

**Refer a friend**

**Job no**: 524242
**Brand**: Finance, Procurement, Legal, Privacy
**Work type**: Full time
**Location**: Ontario
**Categories**: Finance & Strategy

**Chief Privacy Officer**

Flight Centre Travel Group (FCTG) is one of the world’s largest travel retailers and corporate travel managers. The company, which is headquartered in Brisbane, Australia has company-owned leisure and corporate travel business in 23 countries, spanning Australia, New Zealand, the Americas, Europe, the United Kingdom, South Africa, the United Arab Emirates and Asia. FCTG also operates a global corporate travel management network, which extends to more than 90 countries through company-owned businesses and independent licensees. The company opened its first leisure travel shop in Sydney, Australia in 1982 and listed on the Australian Securities Exchange in 1995. Our purpose is to “open up the world for those who want to see”. Every day, we give people all around the world the opportunity to experience something really amazing - travel

To learn more about Flight Centre Travel Group please click HERE

**About The Opportunity**

The Regional CPO will coordinate with their counterpart CPOs in other regions and senior business stakeholders within their own region. They will also work with local complementary functions (e.g., Information Security, Legal, Enterprise Risk) to ensure compliance with applicable local and trans-national legislation, provide expert advice to the regional business in data privacy matters, respond to incidents, and drive change as required.

**Key Responsibilities**
- Follow directions of the Group CPO, and work with the Group CPO and other regional CPOs to develop, implement and maintain FCTG’s continuous data privacy program, privacy policies, procedures and documentation for the processing of personal data.
- Co-ordinate activities with appropriate members of the organisation (e.g., business leads, process owners, development teams, technology, legal, information security, enterprise risk, ethics and compliance, HR, etc.)
- Conduct regular compliance assessments to ensure that Flight Centre Travel Group's legal privacy requirements under applicable local laws are being met.
- Conduct vendor assessment and undertake due diligence processes as required to identify, quantify and address privacy concerns.
- Work with legal to review data privacy requirements within client contracts and ensure third-party suppliers' contracts meet FCTG privacy requirements.
- Support bid-writing teams in RFP responses in relation to data protection matters.
- Present to existing and potential corporate clients to address their privacy concerns.
- Lead the enterprise's response to privacy incidents and notify regulatory authorities of data breaches where required.
- Conduct or oversee privacy awareness campaigns, training and orientation for all employees, helping drive culture change where required.
- Report findings in a structural, transparent and business-relevant manner to regional SWOTs.

**Experience & Qualifications**

**Required**:

- Bachelor's degree or higher in business administration, law, finance, accounting, engineering, science and technology studies, IT or a related discipline or equivalent experience.
- Certified Information Privacy Professional (CIPP) for region of responsibility if available, and/or Certified Information Privacy Manager (CIPM).
- Five+ years of experience in privacy, data protection, privacy law, risk management, auditing and/or compliance.
- Detailed knowledge of regional privacy regimes.
- Knowledge of the privacy aspects of product development including privacy/security by design and default and data minimisation.
- Knowledge of international data transfer mechanisms (e.g., EU model clauses and/or Binding Corporate Rules).
- Experience or familiarity with governance, risk and compliance (GRC) methodologies.
- Strong analytical and problem resolution skills. Sound business judgment, with the ability to think strategically and give practical advice by balancing business needs with legal risks.
- Strong written and verbal communication skills, and the ability to work well with a diverse client base to articulate the importance of customer privacy.
- Ability to maintain documentation, records and archives in an orderly, transparent fashion.
- Willingness to travel as required.
- Being available for incident and emergency handling outside standard office hours, where necessary.
- Has the accessibility and ability to interface with, and gain the respect of, stakeholders at all levels and roles in the company.
- Is comfortable promoting privacy up and down the management chain, including audiences who have varying levels of familiarity with the topic.
- Can work independently, see what needs to be done and has the initiative to take ownership.
- Has good judgment, a sense of urgency and has demonstrated commitment to high standards of ethics, regulatory compliance, custome