Privacy Leader (H/F)
Location: Paris, France
Secondary Locations: Rotterdam,Netherlands;
Company: Marsh & McLennan CompaniesJob ID R_074463-en Apply
Marsh is a global leader in insurance broking and risk management. In more than 130 countries, our experts in every facet of risk and across industries help clients to anticipate, quantify, and more fully understand the range of risks they face. We work with clients of all sizes to define, design, and deliver innovative solutions to better quantify and manage risk. We offer risk management, risk consulting, insurance broking, alternative risk financing, and insurance program management services to businesses, government entities, organizations, and individuals around the world. To every client interaction we bring an unmatched combination of deep intellectual capital, industry-specific expertise, global experience, and collaboration. Since 1871, clients have relied on Marsh for trusted advice, to represent their interests in the marketplace, make sense of an increasingly complex world, and help turn risks into new opportunities for growth. Our more than 30,000 colleagues work on behalf of our clients, who are enterprises of all sizes in every industry, and include individuals, multinational organizations, and government entities worldwide. We embrace a culture that celebrates and promotes the many backgrounds, heritages and perspectives of our colleagues and clients. Visit www.marsh.com for more information and follow us on LinkedIn and Twitter @MarshGlobal.
Marsh and its separately incorporated operating entities around the world are part of Marsh & McLennan Companies, a publicly held company (ticker symbol: MMC).
The purpose of the Privacy Leader is to provide advice and guidance and to manage compliance with internal privacy policies and procedures, applicable data protection legislation and the MMC Binding Corporate Rules. The job role reports to the Chief Compliance Officer, Marsh Continental Europe with a matrix reporting line to the Marsh Global Privacy Leader and the MMC Data Protection Officer.
Key Tasks and Responsibilities
Act as the contact point for the MMC Privacy Office, including the MMC DPO, for all related data privacy matters in the region.
Manage data protection and information security compliance projects
Provide advice and guidance to the business and colleagues on all data privacy and information security matters
Monitor compliance with internal policy relating to the protection of personal data, including MMC Binding Corporate Rules, as well as external regulation and legislation including GDPR and other applicable data protection provisions
Ensure appropriate policies and procedures are in place to manage risks associated with Marsh’s handling of client data
Conduct privacy risk assessments
Cooperate with and act as point of contact for supervisory authorities
Manage the notification and communication of data incidents and personal data breaches, both internal and external
Act as contact point for data subjects related to their rights under GDPR or other applicable data protection legislation
Provide training related to privacy matters including MMC Binding Corporate Rules
Manage the resolution of Data Loss Prevention blocks and remediate issues reported in the DLP Blocked Incident Report
Participate in relevant advisory boards and business councils related to new products and services to provide advice and guidance on data privacy concerns
Review project business cases for privacy concerns, assign action items and make decisions, identify best practices for streamlining, simplifying and improving the quality of future business cases
Manage data incident reporting
Review and resolve access requests to websites
- Exercise good judgement, possess effective collaborative capabilities, demonstrate good communication skills and project management capabilities, ability to self-motivate and work independently
Skills, Knowledge and Experience
- 3-5 years in a Legal and/or Compliance role specialising in data privacy
- Fluent in English
- Knowledge of European data protection legislation
- Experience of working in a multinational organisation, preferably a financial institution
- Some knowledge of insurance and/or insurance intermediation
- Project management, planning and organisation
- Communication (verbal and written) skills
- Microsoft Office skills in Excel, PowerPoint and Word