Data Protection Lawyer
Detail posisi
Kewajiban
• Advising on privacy law with speculation on the Thai PDPA and international principles with regards to data privacy such as the GDPR, with views to assist process owners within GC Group to abate operational and reputation risks relating to data privacy, and ii) ensure compliance with principles relating to data privacy such as data minimization and maintaining confidentiality, integrity and availability of Personal Information
• Collaborating with relevant departments within GC and its group companies in fields of both i) data governance, and ii) risk assessment, investigation and responding to personal data breach,
• Coordinating with relevant supervising authority(ies) in case of personal data breach, as well as coordinating with relevant departments within GC in case of personal data breach which require notification to data subjects
• Advising and coordinating with relevant departments within GC Group such digital teams and IT services to ensure that GC and its group companies to which GC provides DPO
• Shared service possess and implement privacy by design and by default as required by international standards, including without limitation, establishing relevant policies and guidelines regarding the processing of Personal Data
• Providing legal consultation and opinions relating to contract structure and analyzing data flow in view of applying appropriate data processing agreement/arrangement with aim to comply with applicable data protection laws
• Drafting privacy policy and notices and consent forms per legal and business requirements,
• Keeping logs and records relating to Data Privacy as per DPO role such as incident and breach correspondences.
• Organize communication, training, and create awareness about the PDPA law.
Kualifikasi
• Master’s or Bachelor Degree Legal or relating fields
• At least 1-3 years of experience in Legal, Compliance, Data Governance