Global Privacy Associate

Summary

Join Care Access as our Global Privacy Associate and contribute to the strategic development and daily operations of our global data protection program. Reporting to the Global Privacy Program Manager, you will implement data privacy compliance processes and provide operational support. You will engage with various departments, supporting RFPs, RFIs, audits, and impact assessments. This remote position involves less than 10% travel. The role requires a Bachelor's degree, 3+ years of experience in global privacy compliance, and 2+ years as a privacy advisor in healthcare/life sciences. Strong knowledge of global data protection laws and regulations is essential.

Requirements

• Bachelor’s degree and 3+ years’ experience implementing and advising on a global privacy compliance program
• 2+ years’ experience as a privacy advisor in the healthcare / life sciences industry
• Practical experience interpreting and applying international privacy laws and regulations
• Strong knowledge of global data protection and artificial intelligence laws and regulatory developments, including but not limited to familiarity with US, Canadian, and European data protection standards
• Knowledge of privacy and security regulations relevant to health data and clinical research, including but not limited to HIPAA
• Conversant in data security standards and risk management
• Ability to explain privacy principles in a crisp, clear way that is easy for non-experts to understand and apply
• Practical knowledge and experience interpreting privacy rules into pragmatic and actionable controls
• Positive, “how can I help?” mindset and self-driven commitment to excellent quality standards
• Ability to track and remain current on all developments in relevant law and regulation

Responsibilities

• Support the implementation and documentation of global privacy requirements and compliance processes, including operational and technical implementation of privacy controls, including privacy by design and other key privacy principles, for a company engaging in global clinical research
• Assist in research and documentation related to compliance with HIPAA, GDPR, LGPD, and the clinical research regulatory landscape
• Track and advise the company on emerging developments in artificial intelligence regulation
• Provide operational support to the Global Privacy Program Manager on data protection compliance activities
• Support with design and implementation processes to ensure privacy impact assessments, data mapping, reporting, and other due diligence and compliance activities are timely and properly conducted
• Support Care Access audit responses, RFPs and RFIs, and customer due diligence questionnaires
• Support the onboarding, implementation, and administration of technical solutions for the privacy program, including data mapping software
• Maintain established privacy KPIs; report on trends to the Global Privacy Program Manager; identify and implement necessary process changes
• Collaborate with Information Security, IT, Clinical, Regulatory, and other groups to maintain and enforce proper controls and approvals are in place for all aspects of the privacy program
• Support the continuous improvement of privacy program operations and processes
• Ensure all inquiries are responded to in a timely manner and meet or exceed business requirements
• Be an active and engaged member of the Care Access Legal team; support Legal team priorities and projects as directed

Preferred Qualifications

CIPP certification(s)

Benefits

This is a remote position with less than 10% travel requirements