Data Privacy Officer - Counsel - US Specialty Care

Sanofi - Morristown, NJ

posted about 1 month ago

Full-time - Mid Level
Morristown, NJ
Chemical Manufacturing

About the position

As the Data Privacy Officer - Counsel for US Specialty Care at Sanofi, you will play a crucial role in overseeing the data protection and privacy strategies within the organization. Your primary responsibilities will include managing the breach notification and data loss prevention processes, ensuring compliance with both global and US privacy laws, including GDPR and HIPAA, and providing legal guidance on data privacy matters. You will be tasked with conducting risk assessments and collaborating with cross-functional teams to implement best practices in data privacy. This position is pivotal in safeguarding the privacy of our patients and ensuring that our operations align with legal requirements. In this role, you will serve as the internal Privacy Counsel specifically for the US market, leveraging your expert knowledge of data protection and information security. You will conduct data privacy impact assessments for various projects and products, manage privacy and breach requirements, and liaise with regulatory bodies to address any compliance issues. Additionally, you will provide training and support to the US Specialty Care teams, ensuring they are well-versed in data privacy best practices and the implementation of new state laws. Maintaining accurate documentation and records of data processing activities for audit purposes will also be a key responsibility. Sanofi is an innovative global healthcare company dedicated to improving people's lives through science. We offer a supportive environment where you can grow your career and make a significant impact. Join us in our mission to chase the miracles of science and help us shape the future of healthcare.

Responsibilities

  • Serve as internal Privacy Counsel for the US market.
  • Expert knowledge of data protection, information security, breach notification, data privacy policies and procedures, in compliance with GDPR, HIPAA, and current State Privacy Laws in the US.
  • Conduct data privacy impact assessments for projects/products within scope.
  • Manage privacy and breach requirements including investigation, reporting, and remediation in accordance with regulatory requirements.
  • Liaise with regulatory bodies and internal stakeholders to address any data privacy concerns or compliance issues.
  • Provide training and support to US Specialty Care teams on data privacy best practices and leading data privacy implementation of new state laws.
  • Ensure documentation and records of data processing activities are maintained accurately for audit purposes.

Requirements

  • Juris Doctor (JD) from an accredited US law school, preferably with a focus in data privacy, cybersecurity, and breach notification.
  • In-depth knowledge of U.S. State and federal privacy laws/regulations (CCPA, HIPAA), data breach notification regulations, and familiarity with AI regulations.
  • Previous privacy/AI/breach notification/cybersecurity law, data loss prevention experience in a law firm.
  • Healthcare experience, specifically providing product counseling to Product Management in the dermatology, immunology, respiratory space, or technology product/marketing teams.
  • Relevant privacy certifications (CIPP-US).
  • Strong relationship-building, collaboration, and working across functions.
  • Excellent communication skills, both written and verbal, with the ability to convey complex legal concepts to non-experts.

Benefits

  • High-quality healthcare coverage
  • Prevention and wellness programs
  • At least 14 weeks' gender-neutral parental leave
  • Opportunities for career growth and development
  • A thoughtful rewards package that recognizes contributions.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service