JUNIOR COMPLIANCE & DATA PRIVACY EXPERT

Location COMMUNITY OF MADRID, SPAIN
Experience level Early Careers
Job details sector Information Technology

POSITION MISSION & MAIN ACTIVITIES

 

  1. Compliance

  • Regulatory watch of the legislations under the perimeter

  • Guarantee the compliancy with local applicable regulations under surveillance

  • Implement and maintain the different processes assigned to compliance: Ethics, Anti-bribery, Sanctions, Conflicts of interest, Criminal laws.

  • Review and follow up the compliance risks (evaluate the impact on the operational risks model of the entity)

  • Raise awareness to all employees regarding the risk associated of non-compliance

  • Report and escalate any relevant change in regulations subject to generate additional risks or needs inside AXA Services perimeter

 

  1. Data Privacy policies and governance

  • Develop and adapt AXA Services policies on data privacy in accordance with security local laws.

  • Develop and create appropriate privacy confidentiality consent forms, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.

  • Adopting and implementing detailed requirements or guidelines to assure a compliant handling of specific matters as deemed necessary such as:

    • IT Project Management when personal data is involved

    • Third party management: risk assessment and contract management

    • Sensitive Personal Data:  Greater emphasis on whether and how to process this type of data

  • Design complaints procedure. Detailed guidance as to how employees and non-employees

 

  1. Data Privacy management and governance

  • Training and providing juridical consultative advice to all the areas and departments of the entity in question with regards to Data Privacy matters

  • Supporting and controlling a general data protection register (both as Data Controller and Processor) containing all data processing in use and current information about purpose).

  • Support to the different projects providing Data Privacy assessment and sign-off when satisfied on compliancy with local applicable laws

  • Collaborates with the teams in charge to respond to requests for access to and correction of personal information and general issues concerning personal information (i.e. rights of access, rectification, cancellation and similar requests).

  • Support on drafting internal or external data privacy agreements

  • Reviewing and monitoring business activities and vendor contracting and negotiations

  • Attendance at Data Privacy, Security or similar Committees

  • Coordination and management of responses to incidents involving Personal Data (e.g. Unauthorized access or disclosure)

  • Permanent Control: Ensuring on a regular basis that data processing applications and processes are still compliant.

 

  1. Control of Data Privacy Regulations

  • Monitors both local and other relevant Data Privacy related regulations impacting the ATS (GDPR + local regulations).

  • Creates an environment that promotes compliance with Data Privacy related regulations.

 

  1. Interface with corporate governance bodies

  • Communication and reporting to the local data protection authority (if existing) and other relevant regulators, attendance at data protection authority inspections, handling audit submissions and other information submission requirements

  • Build on a strong working relationship with the management of the compliance & governance function, guaranteeing the global needs of the organization.

  • Build on the relation with the AXA Services local governance bodies, Axa OpCos

  • Coordination with the local Risk, Security, Legal, HR, Physical Security, IT Operations, Finance and Internal Audit function on Data Privacy matters

  • Communication and reporting to the local data protection authority (if existing) and other relevant regulators, attendance at data protection authority inspections, handling audit submissions and other information submission requirements.

  • Keeping Senior and Business Management informed about their responsibilities regarding Data Privacy

PROFILE, SKILLS & COMPETENCIES

 

  1. Profile

 

  • A previous Data Privacy / Compliance experience (at least Master graduate or equivalent – Legal or IT Security)

  • 0 to 4 years of professional experience (preferable including contract negotiation)

  • Ability to draft complex legal documentation in English

  • Language skills:

    • Required: English – high level (written, spoken, negotiation)

    • Nice to have (not required but appreciated): German, French, Spanish, Italian

 

  1. Skills & Competencies

 

  1. Results Orientation

  • Ability of tasks prioritization with a clear action plan defined

  • Develop an internal sense of urgency to complete tasks

  • Holds self and others accountable for delivering high-quality results on time and within budget

  • Challenge of ineffective work processes and promote constructive alternatives

  • Use of the appropriate criteria to regularly evaluate work processes, services and deliverables

  • Solicits and/or provides information that could affect the planning, programs and decision-making for the organization

  1. Change Leadership / Collaboration and Influencing

  • Ability to build strong working relationships across a broad and varied mix of people and skills in IT and across business organizations

  • Ability to win the trust of internal customers and other parts of the organization while challenging and fostering change

 

  1. Team Spirit

  • Positive mindset

  • Excellent communication skills at all levels

  • A collaborative work style and team-building mindset

  • Intercultural sensitivity

  • Flexibility

Would you like to wake up every day driven and inspired by our mission of acting for human progress by protecting what matters? Here at AXA we strive to be a responsible employer, placing employee engagement at the heart of its business strategy. Achieving this means creating a workplace built on AXA's Values that foster diversity and equal opportunities for all, promotes employee participation, encourages professional development, and supports employee well-being.

We are looking for talented individuals who come from varied backgrounds, think differently and want to be part of this exciting transformation by challenging the status quo so we can push AXA - a leading global brand and one of the most innovative companies in our industry - onto even greater things.

In a fast-evolving world and with a presence in 57 countries, our 160,000 employees anticipate change to offer services and solutions tailored to the current and future needs of our 108 million customers.


AXA is becoming a sustainable tech-led company and at AXA Group Operations we are one of the major catalysts for this transformation. 

We set the tone by triggering and empowering the evolution of our insurance business model through technology and innovation, driving its concrete implementation globally at speed, with a high quality of advisory and execution.

We are present across 17 countries with committed, highly qualified teams. We leverage technology, data, sourcing, security and investment allocation in a global way, but also achieve economies of scale and synergies when necessary.

At AXA Group Operations, we want to be recognized in three fields of action:

  • State-of-the-art Data Technology to drive customer experience
  • State-of-the-art Procurement & Sourcing to drive efficiency and better manage risks
  • High-Performing Global Team for stronger partnerships with AXA entities 

We bring together the expertise, cultural diversity and creativity of over 8,000 employees worldwide and we’re committed to equal opportunities in all aspects of employment (gender, LGBT+, disabled persons, or people of different origins) and to promoting Diversity & Inclusion by creating a work environment where all employees are treated with dignity and respect, and where individual differences are valued.