Job Purpose
The purpose of this role is to ensure the effective operationalisation of privacy within the Sales and Distribution business unit. This includes implementing, managing, and enforcing information governance and privacy controls in alignment with the Group Information Governance and Privacy Strategy, as well as applicable data privacy legislation.The role is responsible for overseeing and executing all data privacy activities within Sales and Distribution, ensuring full compliance with relevant regulatory requirements. In addition, the role will support the Group Information Officer by contributing to the governance, oversight, and continuous improvement of information governance and privacy practices across the Discovery Group.
The Deputy Privacy Officer is responsible for identifying, governing, controlling, communicating, and safeguarding information assets within Marketing Distribution in accordance with data privacy legislation and regulatory requirements. The role works closely with relevant business and technical owners of systems and processes to ensure effective oversight and implementation of information governance and privacy controls. This position provides operational insight to support the endÃÂâÃÂÃÂÃÂÃÂtoÃÂâÃÂÃÂÃÂÃÂend management of information governance and privacy capabilities. It plays a critical role in developing, maintaining, and continuously enhancing Discovery's information governance and privacy posture through the efficient operation, monitoring, and control of these capabilities.
Key outputs may include but not limited to:
Participate in development of information governance and privacy in support of business objectives and arising risks with particular focus on information governance and privacy capabilities, operational and service excellence within Marketing Distribution;
Cultivate and manage objective working relationships with a variety of stakeholders, including end-users, SME's, project managers, senior staff members and security personnel across Marketing Distribution;
Coordinate, drive and manage information governance and privacy project implementations and rollouts to ensure successful implementation within agreed timelines and ensure effectiveness of projects by ensuring efficiency including business case development and financial analysis;
Promote and encourage information governance and privacy excellence. Develop a service culture which builds rewarding relationships, proposes innovations, and allows others to provide exceptional client service;
The encouragement of compliance, by Marketing Distribution, with the conditions for lawful processing of personal information;
Dealing with requests for information made to Discovery Business Unit pursuant to POPIA and PAIA in conjunction with the Group Information Officer and Marketing Distribution DIO;
Working with the Group Information Officer and Marketing Distribution DIO in relation to investigations conducted pursuant to Chapter 6 dealing with prior authorisation, in relation to Discovery Business Unit;
Communication with the Information Regulator, where necessary on matters related to information privacy or access;
Ensuring the documentation of processing activities regarding personal information processing;
Conducting data privacy impact assessments when personal information is processed to ensure adequate measures and standards exist to comply with conditions of lawful processing;
Ensuring the documentation of processing activities regarding personal information processing;
Submission of reports with regards to data subject access requests, assessments, complaints and breaches to the Group Information Officer - or as defined in the
regulations;
Ensuring the privacy risk assessments are carried out relating to the implementation of data privacy legislation;
Providing input and sign-off into privacy impact assessments carried out by the entity;
Reporting to the appropriate Group committee;
Driving to different Franchises nationally;
Ensuring the adherence to POPIA in the Distribution franchises;
Dealing with complaints;
Assisting with regulatory and Discovery onsite visits;
Design and implementation of regulatory required documentation.
Work Experience
10+ Years Information governance and privacy experience Of which 3+ Years' experience in privacy operational management
10 or more years of relevant work experience in two or more of the following areas: Information governance , Privacy management and privacy legislation.
Education
Information management related Diploma / Degree Privacy management related Diploma / Degree or Certification
Privacy management certification e.g. CIPM or CIPT (IAPP certification) Business management
Technical Skills or Knowledge
Knowledge of privacy management aspects.
Ability to define tasks needed to accomplish goals and assigns and co-ordinates people, tasks and resources to ensure an efficient flow of work.
Ability to make firm and, if necessary, swift decisions, sometimes with limited information; assesses risk and accepts responsibility for the resulting action
Technical knowledge and experience working with information governance and privacy specific control capabilities across both technical and business domains.