Popular - San Juan, PR
posted 6 days ago
Full-time - Entry Level
San Juan, PR
Credit Intermediation and Related Activities
About the position
The Data Privacy Officer is responsible for ensuring compliance with data privacy laws and regulations, updating privacy policies and procedures, and keeping abreast of new and proposed privacy laws. This role involves reviewing new and proposed laws to determine applicability and assess and document Popular's readiness, updating privacy disclosures on an annual basis, and understanding the business purpose of obtaining data to update the record of processing activities and legitimate interest.
Responsibilities
- Review new and proposed US and International Data Privacy laws and regulations to determine applicability to Popular.
- Analyze results and determine an action plan to ascertain compliance.
- Document analysis performed.
- Ascertain there is a plan to address any upcoming new requirements or changes to existing requirements.
- Review Privacy Handbook on an annual basis and update as needed, taking into consideration changes in laws, regulations, and organizational changes.
- Review on an annual basis Data Privacy disclosures and update log of disclosures.
- Coordinate with the Compliance Division the timely publication of the disclosures in all platforms and systems.
- Ascertain cookies banner and opt out are updated.
- Prepare/update templates to communicate security incidents to clients, regulators and supervisory authorities of the countries that are members of the European Union.
- Ascertain that all processes of the Corporation are evaluated for Privacy issues.
- Update the BPR according to the priorities established for each process.
- Update documentation and Record of Processing Activities.
- Update Legitimate Interest documentation.
- Coordinate with CSG's PIM area to generate on a quarterly basis, Popular's exposure to data privacy laws (CCPA and GDPR).
- Review e-learning on an annual basis (for all employees and targeted trainings).
- Ascertain that training is available to all employees.
- Coordinate with corresponding units.
- Assist in the evaluation of new products or services, and service providers as needed.
- Participate in various committees, as deemed necessary.
- Participate in the operationalization of the recommendations provided by Deloitte in its Privacy Assessment.
Requirements
- Bachelor's Degree in Business Administration or Information Systems.
- Two (2) years' of experience in an audit or compliance role within the financial services industry.
