Join the World's Top Legal Talent Network

YOUR TASKS AND RESPONSIBILITIES

The primary responsibilities of this role, Assistant General Counsel Data Privacy, are to:

• Help to lead compliance with Data Privacy processes and governance in United States to actively help to mitigate Data Privacy risks, with a focus on those involving HIPAA, clinical trials and other healthcare matters and human resources;
• Proactively review and update Data Privacy processes in the United States periodically and when needed;
• Confirm alignment of Data Privacy processes in United States with the Global Data Privacy Officer;
• Provide legal advice and guidance on Data Privacy topics to Bayer senior leaders, managers and other internal clients in United States and globally (for global projects involving United States) to confirm that current and proposed activities, policies, business practices and transactions comply with relevant Data Privacy laws and regulations;
• Follow-up on legal and regulatory developments in the field of Data Privacy;
• Identify trends and potential impacts on the business’s risk management activities and develops/implements solutions;
• Lead investigations of potential data privacy incidents, identifies applicable legal obligations and supports incident response;
• Work with colleagues in United States Office of Compliance, strategically identifies, develops and provides general and targeted United States Data Privacy training and United States Data Privacy internal communications with the goal of effectively and efficiently helping to mitigate Data Privacy risk to Bayer;
• Negotiate, draft and review the Data Privacy and Security aspects of contracts with internal and external business partners in cooperation with management and the business units to help to effectively manage and mitigate Data Privacy risks via contract terms and conditions;
• Develop and update Data Privacy templates (e.g., contract language, consents, privacy policies) as business needs and Data Privacy laws and regulations change;
• Develop a strong working knowledge of the Company’s business and operational goals and objectives, as well as Department-wide relationships with colleagues in LPC, HR and with senior leaders across the Bayer United States businesses;
• Conduct reviews for senior business representatives and stakeholder groups that provide insights and access to developments in the Data Privacy environment, including pending legislation (Federal and state), litigation and material news events;
• Contribute to and use business analytics and digital tools to help identify risks and mitigation strategies;
• Manage multiple priorities by utilizing detailed planning, sound business analysis and information systems support.

WHO YOU ARE

Your success will be driven by your demonstration of our LIFE values. More specifically related to this position, Bayer seeks an incumbent who possesses the following:

Required Qualifications:

• Juris Doctor from an accredited United States law school and an active license to practice law;
• At least 10 years of experience as an attorney in a law firm or in-house counsel, including at least four years of experience in Data Privacy, including drafting, reviewing and negotiating Data Privacy and Security contract language;
• Proven deep functional knowledge of United States federal and state laws and practices governing the handling and protection of personal data and functional knowledge of EU data privacy laws and practices; familiarity with data security and protection;
• Experience providing counseling regarding data privacy legal compliance, HIPAA and Business Associate Agreements;
• Ability to be comfortable and confident when addressing data privacy topics in areas where legal guidance is emerging;
• Experience drafting, reviewing and negotiating contract documents required by EU Data Privacy regulations (DPAs, model clauses);
• Ability to lead external contract negotiations;
• Experience with investigating potential data privacy incidents and supporting/managing incident response;
• Experience with developing or delivering Data Privacy trainings and presentations;
• Experience working within complex business environments, in planning and executing large-scale projects and preferably in corporate governance and compliance;
• Clear mindset as being a Business Partner as well as a compliance keeper, always focusing on "how it will work";
• Strong interpersonal skills in order to work effectively with internal and external customers, build coalitions and consensus, interrelate with all levels of management at the company (from the most senior corporate management to functional and site personnel) and help to promote good governance and corporate compliance;
• Personal attributes are creative problem-solver, positive can-do attitude, personally mature, organizationally sensitive, intellectually capable, persuasive and assertive;
• Creates opportunities and overcomes obstacles through own initiatives;
• Ability to work on numerous projects at the same time and to work independently;
• Profound and proven conflict handling, cooperation and communication skills as well as poise;
• Proven high analytical and conceptual skills;
• Efficient, structured, systematic and creative way of working, aligned with sound and proven project management skills;
• Excellent verbal and written communication skills;
• Demonstrated capability in evaluating and balancing risks with business needs;
• Willingness to travel between 10-20%.

Preferred Qualifications:

• Experience in a life science setting;
• Certified Information Privacy Professional – United States and E Certifications (active);
• Deep knowledge of the Bayer business and the United States and global Bayer organizations.