Head of Global Privacy

Overview

Global Head of Privacy – London – Insurance – Hybrid working. This role partners with a Global Insurance company to lead the global privacy function, advising on data protection and data governance across all group entities and jurisdictions. The role reports into the Head of Compliance and collaborates with the Heads of Compliance and General Counsel on data protection matters.

Responsibilities

• Lead global privacy strategy ensuring compliance with GDPR (UK/EU), PIPA (Bermuda), CCPA/CPRA (California), HIPAA (US), Data Protection Law (Guernsey) and other applicable laws and regulations.
• Develop, maintain and enhance data protection policies and standards across the UK, US, Bermuda and Guernsey including training initiatives and monitoring.
• Provide practical regulatory and commercial advice to senior stakeholders and the business on data privacy related matters.
• Develop and execute an annual data privacy protection plan, conduct Data Protection Impact Assessments (DPIA), remediate any identified issues.
• Oversee the data privacy aspects of vendor and third-party relationships, including negotiating and maintaining Data Processing Agreements, conducting processor due diligence, and ongoing monitoring.
• All other associated data protection/privacy matters.

Qualifications and Experience

• Preferred qualifications: CIPP/E (European), CIPM (Privacy Manager); CIPP/US, CIPT, or equivalent privacy certifications.
• Minimum of 10 years' experience in either (Re)Insurance or Financial Services.
• Experience advising on UK GDPR, EU GDPR, and/or multi-jurisdictional data protection regimes is required.