Share this Job
Apply now »

Data Protection Champion-214870

Data Protection Champion-214870

Position Snapshot

- Business Unit/Function: IT

- Location: Beijing

 

 

Main Purpose of Job                        
Data Protection Champion is responsible for data and privacy protection in Zone Greater China. S/He works together with BRM, FRM, Legal counsel as well as external law firm to ensure Nestle data processing process complies within legal framework, in particular the the Data Security Law and Personal Information Protection Law.
S/He works with IT security specialist and application owner to ensure Nestle managed solutions are data protection compliant.

Responsible for understanding the main data flows within the particular Nestlé Group entity, raising awareness of internal and external data privacy requirements, providing or organizing data protection training for Nestlé employees and contracted staff and handling any privacy queries, requests or complaints.

Some knowledge of privacy requirements is a must but the Data Protection Champion role is fundamentally more hands-on and focused on implementing the policies, operationalizing the work and demonstrating that Nestlé practices what its internal policies preach.

 

Key Outputs:     
"Privacy program:
•  Coordinate the Nestlé Group entity privacy program.
•  Advise the Nestlé Group entity ManCom of data protection obligations and report on data protection status. 
•  Give regular updates to senior management on data protection issues and risks, and/or progress on data protection initiatives.
•  Collaborate with other business areas within the Nestlé Group entity to ensure they are aware of any risks or initiatives.
•  Collaborate with Nestlé Group Data Protection Office and other Data Protection Champions to roll out global data protection initiatives.            
"Data Processing Register:
•  Provide support for the implementation of the data processing register.
•  Work with the business function to review the data processing register at least annualy to ensure that it is accurate and up• to• date."                
"Training:
•  Initiate, facilitate & promote activities to foster data protection awareness within the organization and related entities.
•  Support incorporation of data protection elements into new starter training.          
"Queries, access requests and complaints:
•  Establish and coordinate local processes to handle personal data queries, access requests and complaints from consumers, employees or customers.              
"Privacy impact assessments:
•  Assist business functions with the undertaking of privacy impact assessments regarding all new system, digital asset or project involving the processing of personal data. 
•  Support the business in managing the mitigation of identified risks and ensure remediation activities are prioritised in accordance with the impact analysis."                
"Audit:
•  Be the point of contact within the Nestlé Group entity for internal and external data protection audit 
•  Ensure that appropriate measures are taken to mitigate any risk identified as part of an audit"                
"Data breach response plan:
•  Establish and coordinate a local data breach response plan to be followed in the event of an actual or suspected data breach.
•  Ensure relevant internal people are informed and local data protection authorities and individuals are notified (where applicable)."                
 

Key Experiences: 
• Understanding of local data protection regime and culture
• Experience in relaying complex technical processes to business audiences who are not technically skilled
• Strong communication and task coordination skills
• Comfortable working with senior stakeholders
• Excellent time management and project management skills
• Experience of dealing with queries and/or complaints within strict deadlines
• Adept at producing accurate, clear documentation to meet business  requirements, including guidelines & procedures
• Cross functional experience
• Change management experience    
        
214870/51 /ZP /LP
        

                  
                        

We are Nestlé, the largest food and beverage company. We are 308,000 employees strong driven by the purpose of enhancing the quality of life and contributing to a healthier future. Our values are rooted in respect: respect for ourselves, respect for others, respect for diversity and respect for our future. With more than CHF 91.4 billion sales in 2018, we have an expansive presence with 413 factories in more than 85 countries. We believe our people are our most important asset, so we'll offer you a dynamic inclusive international working environment with many opportunities across different businesses, functions and geographies, working with diverse teams and cultures. Want to learn more? Visit us at www.nestle.com.

Position Snapshot

- Business Unit/Function: IT

- Location: Beijing

 

 

Main Purpose of Job                        
Data Protection Champion is responsible for data and privacy protection in Zone Greater China. S/He works together with BRM, FRM, Legal counsel as well as external law firm to ensure Nestle data processing process complies within legal framework, in particular the the Data Security Law and Personal Information Protection Law.
S/He works with IT security specialist and application owner to ensure Nestle managed solutions are data protection compliant.

Responsible for understanding the main data flows within the particular Nestlé Group entity, raising awareness of internal and external data privacy requirements, providing or organizing data protection training for Nestlé employees and contracted staff and handling any privacy queries, requests or complaints.

Some knowledge of privacy requirements is a must but the Data Protection Champion role is fundamentally more hands-on and focused on implementing the policies, operationalizing the work and demonstrating that Nestlé practices what its internal policies preach.

 

Key Outputs:     
"Privacy program:
•  Coordinate the Nestlé Group entity privacy program.
•  Advise the Nestlé Group entity ManCom of data protection obligations and report on data protection status. 
•  Give regular updates to senior management on data protection issues and risks, and/or progress on data protection initiatives.
•  Collaborate with other business areas within the Nestlé Group entity to ensure they are aware of any risks or initiatives.
•  Collaborate with Nestlé Group Data Protection Office and other Data Protection Champions to roll out global data protection initiatives.            
"Data Processing Register:
•  Provide support for the implementation of the data processing register.
•  Work with the business function to review the data processing register at least annualy to ensure that it is accurate and up• to• date."                
"Training:
•  Initiate, facilitate & promote activities to foster data protection awareness within the organization and related entities.
•  Support incorporation of data protection elements into new starter training.          
"Queries, access requests and complaints:
•  Establish and coordinate local processes to handle personal data queries, access requests and complaints from consumers, employees or customers.              
"Privacy impact assessments:
•  Assist business functions with the undertaking of privacy impact assessments regarding all new system, digital asset or project involving the processing of personal data. 
•  Support the business in managing the mitigation of identified risks and ensure remediation activities are prioritised in accordance with the impact analysis."                
"Audit:
•  Be the point of contact within the Nestlé Group entity for internal and external data protection audit 
•  Ensure that appropriate measures are taken to mitigate any risk identified as part of an audit"                
"Data breach response plan:
•  Establish and coordinate a local data breach response plan to be followed in the event of an actual or suspected data breach.
•  Ensure relevant internal people are informed and local data protection authorities and individuals are notified (where applicable)."                
 

Key Experiences: 
• Understanding of local data protection regime and culture
• Experience in relaying complex technical processes to business audiences who are not technically skilled
• Strong communication and task coordination skills
• Comfortable working with senior stakeholders
• Excellent time management and project management skills
• Experience of dealing with queries and/or complaints within strict deadlines
• Adept at producing accurate, clear documentation to meet business  requirements, including guidelines & procedures
• Cross functional experience
• Change management experience    
        
214870/51 /ZP /LP
        

                  
                        

We are Nestlé, the largest food and beverage company. We are 308,000 employees strong driven by the purpose of enhancing the quality of life and contributing to a healthier future. Our values are rooted in respect: respect for ourselves, respect for others, respect for diversity and respect for our future. With more than CHF 91.4 billion sales in 2018, we have an expansive presence with 413 factories in more than 85 countries. We believe our people are our most important asset, so we'll offer you a dynamic inclusive international working environment with many opportunities across different businesses, functions and geographies, working with diverse teams and cultures. Want to learn more? Visit us at www.nestle.com.

Beijing, CN

Beijing, CN

Apply now »