DATA PRIVACY CENTRE OF EXPERTISE MANAGER

POSITION MISSION & MAIN ACTIVITIES

Coordination and oversight of the team dedicated to set up the privacy needs in AXA GO products (data privacy by design) as in projects in the perimeter.

1. Team management

· Design and allocate accordingly to skills and need the workload of the team

· Foster a global and transversal culture in the team

· Ensure partnership with the operational entities embedded in AXA GO’s processes

· Push for the SPOC model of Data Privacy Experts in front of the different product teams in AXA GO

· Design proper annual objectives following strategic priorities of AXA Group

2. Data Privacy policies and governance

· Oversight of the development of AXA GO’s policies on data privacy in accordance applicable laws and regulations.

· Develop appropriate process to manage the activities in the team related to products, projects and contracts.

· privacy confidentiality consent forms, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.

· Design processes oriented to have a

· Adopting and implementing detailed requirements or guidelines to assure a compliant handling of specific matters as deemed necessary such as:

o IT Project Management when personal data is involved

o Third party management: risk assessment and contract management

o Sensitive Personal Data: Greater emphasis on whether and how to process this type of data

o International transfers

o Permanent oversight over privacy processing (assessments and requirements).

3. Data Privacy management and governance

· Training and providing juridical consultative advice to all the areas and departments of the entity in question with regards to Data Privacy matters

· Supporting and controlling a general data protection register (both as Data Controller and Processor) containing all data processing in use and current information about purpose).

· Support to the different projects providing Data Privacy assessment and sign-off when satisfied on compliancy with local applicable laws

· Collaborates with the teams in charge to respond to requests for access to and correction of personal information and general issues concerning personal information (i.e. rights of access, rectification, cancellation and similar requests).

· Support on drafting internal or external data privacy agreements

· Reviewing and monitoring business activities and vendor contracting and negotiations

· Attendance at relevant required Committees

· Coordination and management of responses to incidents involving Personal Data (e.g. Unauthorized access or disclosure)

· Permanent Control: Ensuring on a regular basis that data processing applications and processes are still compliant.

4. Control of Data Privacy Regulations and processes

· Design the needed controls over the implementation of data privacy in the organization (in processes, activities and team tools).

· Distributes the work to ensure proper oversight on the products and projects

· Monitors both local and other relevant Data Privacy related regulations (GDPR + local regulations).

· Creates an environment that promotes compliance with Data Privacy related regulations.

5. Interface with corporate governance bodies

· Build on a strong working relationship with the management of the compliance & data privacy function, guaranteeing the global needs of the organization.

· Build on the relation with the AXA Group DP function, AXA Operational entities and AXA GO governance bodies

· Coordination with the local Risk, Security, Legal, HR, Physical Security, IT Operations, Finance and Internal Audit function on Data Privacy matters

· Communication and reporting to the local data protection authority (if existing) and other relevant regulators, attendance at data protection authority inspections, handling audit submissions and other information submission requirements.

· Keeping Senior and Business Management informed about their responsibilities regarding Data Privacy Your Profile

PROFILE, SKILLS & COMPETENCIES

1. Profile

· + 10 years of professional experience (at least Master graduate or equivalent – Legal or IT Security)

· Data Privacy experience (part of it must be in an IT environment)

· Strong skills in including contract negotiation with the ability to draft complex legal documentation in English

· Risk management mindset

· Language skills: English – high level (written, spoken, negotiation)

· Nice to have (not required but appreciated):

o notions of data privacy in artificial intelligence

o French, German, Spanish, Italian

2. Skills & Competencies

A. Results Orientation

· Ability of tasks prioritization with a clear action plan defined

· Develop an internal sense of urgency to complete tasks

Holds self and others accountable for delivering high-quality results on time and within budget

Challenge of ineffective work processes and promote constructive alternatives

Use of the appropriate criteria to regularly evaluate work processes, services and deliverables

Solicits and/or provides information that could affect the planning, programs and decision-making for the organization

B. Change Leadership / Collaboration and Influencing

· Ability to build strong working relationships across a broad and varied mix of people and skills in IT and across business organizations

· Ability to win the trust of internal customers and other parts of the organization while challenging and fostering change

C. Team Spirit

· Positive mindset

· Excellent communication skills at all levels

· A collaborative work style and team-building mindset

· Intercultural sensitivity

· FlexibilityAbout AXA

As a world-leading insurance company, we act for human progress by protecting what matters. With 153,000 employees in 54 countries working with 105 million customers, we’ve created a truly dynamic and vibrant community. Inclusion and diversity link closely with our values, and together we’re nurturing a culture ofAbout the Entity

respect, for each other, for our customers and the communities around us. Join AXA and you’ll feel like you belong, are included and can thrive. You’ll be able to shape the way you work and truly grow your potential as you seek out new opportunities, push boundaries and benefit people in critical moments of their lives. This is your chance to build the tomorrow you want. Know you can.

AXA is becoming a sustainable tech-led company and at AXA Group Operations we are one of the major catalysts for this transformation.

We set the tone by triggering and empowering the evolution of our insurance business model through technology and innovation, driving its concrete implementation globally at speed, with a high quality of advisory and execution.

We are present across 17 countries with committed, highly qualified teams. We leverage technology, data, sourcing, security and investment allocation in a global way, but also achieve economies of scale and synergies when necessary.

At AXA Group Operations, we want to be recognized in three fields of action:

What We Offer

• State-of-the-art Data Technology to drive customer experience
• State-of-the-art Procurement & Sourcing to drive efficiency and better manage risks
• High-Performing Global Team for stronger partnerships with AXA entities

We bring together the expertise, cultural diversity and creativity of over 8,000 employees worldwide and we’re committed to equal opportunities in all aspects of employment (gender, LGBT+, disabled persons, or people of different origins) and to promoting Diversity & Inclusion by creating a work environment where all employees are treated with dignity and respect, and where individual differences are valued.