Privacy and Data Protection Compliance Officer

Are you a Data Protection expert who feels comfortable working with real and virtual multinational teams? At Gainwell Technologies, we provide an opportunity to learn, connect, and collaborate with cross-functional stakeholders at the company and gain exposure to a variety of tools, effectively manage time, and partner with functional leads who will help develop your skills, your career growth, and professional development.

What you will do:

• Serve as the main point of contact for Data Protection in India Operations within the organization for staff members, regulators, and relevant public authorities on issues related to data protection.
• Serve as the subject matter expert in India for relevant laws and regulations, including HIPAA and other United States Privacy laws as well as the Indian Digital Personal Data Protection Act, IT Act and other applicable Indian privacy laws and regulations. 
• Evaluate the India Operations existing data protection framework to identify areas of improvement and develop remediation plans for operations in India Operations.
• Devise training plans and provide data protection advice to staff members in India Operations.
• Inform and advise the India Operations team on all matters related to data protection.
• Promote a culture of data protection and compliance across all units of the organization.
• Develop, implement, and maintain comprehensive privacy and data protection risk assessment and mitigation programs in accordance with applicable laws, regulations, and industry standards.
• Monitor changes in regulatory requirements and industry trends, and work with cross-functional internal stakeholders to update policies and procedures accordingly to ensure compliance.
• Collaborate with internal stakeholders, including legal, finance, and operations teams, to address compliance issues and implement effective risk mitigation strategies.
• Serve as the primary point of contact for privacy and data protection inquiries and audits, and coordinate responses as necessary.
• Conduct internal investigations as needed to address privacy violations or suspected breaches. 
• Demonstrate strong communication and analytical skills with the ability to identify and assess potential risks and privacy and data security issues.
• Report to the Gainwell Corporate Privacy Officer.

Qualifications Requirements:

• Information Security or Equivalent Degree. 
• Certificate in Privacy Program is preferrable.
• Experience in managing Privacy and Data Protection Compliance, Audit, etc. subject matter areas. 
• 8-10 years in Privacy Compliance role, or business process role in Corporate Compliance.
• Experience in Global and Local Privacy Laws, HIPAA, HITECH, GDPR, CCPA, DPDPA, IT Act, ISMS, ISO27001 etc.
• Experience drafting corporate policies, processes, risk assessments and similar documents.
• Experience working in Corporate Legal and Compliance department of a multinational company. 
• Experience working independently on multiple assignments or engagements.
• Proficient in Microsoft Office applications, especially Outlook, Word, Excel, and PowerPoint
• Experience working in a fast-paced, collaborative team environment.

Work Environment

• This role offers a hybrid work environment with a mix of remote and on-site collaboration.
• You’ll have access to modern development tools and a culture that fosters creativity, inclusivity, and professional development.