Compliance Assurance Expert (6 months contract) MISSIONS & MAIN ACTIVITIES Compliance - Regulatory watch of the legislations under the perimeter - Guarantee the compliance with local applicable regulations under surveillance - Implement and maintain the different processes assigned to compliance: Ethics, Anti-bribery, Sanctions, Conflicts of interest, Criminal laws.
- Review and follow up the compliance risks (evaluate the impact on the operational risks model of the entity) - Raise awareness to all employees regarding the risk associated with non-compliance - Report and escalate any relevant change in regulations subject to generate additional risks or needs inside AXA Services perimeter.
Data Privacy Policies and Governance - Develop and adapt AXA Services policies on data privacy in accordance with local security laws.
- Develop and create appropriate privacy confidentiality consent forms, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.
- Adopting and implementing detailed requirements or guidelines to assure a compliant handling of specific matters as deemed necessary such as: - IT Project Management when personal data is involved - Third party management: risk assessment and contract management - Sensitive Personal Data: Greater emphasis on whether and how to process this type of data - Design complaints procedure.
Detailed guidance as to how employees and non-employees can report issues.
Data Privacy Management and Governance - Training and providing juridical consultative advice to all areas and departments regarding Data Privacy matters.
- Supporting and controlling a general data protection register (both as Data Controller and Processor) containing all data processing in use and current information about purpose.
- Support to different projects providing Data Privacy assessment and sign-off when satisfied on compliance with local applicable law.
- Collaborate with teams to respond to requests for access to and correction of personal information and general issues concerning personal information (i.e.
rights of access, rectification, cancellation, and similar requests).
- Support on drafting internal or external data privacy agreements.
- Reviewing and monitoring business activities and vendor contracting and negotiation.
- Attendance at Data Privacy, Security, or similar Committee.
- Coordination and management of responses to incidents involving Personal Data (e.g.
Unauthorized access or disclosure).
Control of Data Privacy Regulations - Monitor both local and other relevant Data Privacy related regulations impacting the ATS (GDPR + local regulations).
- Create an environment that promotes compliance with Data Privacy related regulations.
#J-18808-Ljbffr