How will you make an impact?
Thermo Fisher Scientific Inc. (NYSE: TMO) is the world leader in serving science, with revenues of more than $40 billion and approximately 130,000 employees globally. Our mission is to enable our customers to make the world healthier, cleaner and safer. We help our customers accelerate life sciences research, solve complex analytical challenges, improve patient diagnostics, deliver medicines to market and increase laboratory productivity. Through our premier brands – Thermo Scientific, Applied Biosystems, Invitrogen, Fisher Scientific and Unity Lab Services – we offer an unmatched combination of innovative technologies, purchasing convenience and comprehensive services.
What will you do?
The Privacy Counsel role has primary responsibility for handling the day-to-day compliance activities within the business unit and for the functional area, and region you will support. This includes responding to day-to-day questions from stakeholders in the Group and for the Region and assisting with privacy-by-design activities for new products, solutions, services, or data uses within that Group and for the Region, which will include both assistance to relevant stakeholders in conducting the initial privacy assessment and in determining and concluding data protection impact assessments where necessary. This position will oversee updates to the personal data inventories related to the Group and Region, and this person will also involve coordinating response to requests from data subjects from the Region or Group to exercise their privacy rights (such as the right to access or delete data). This will require significant interactions with the relevant business group and regional leadership and an ability to project manage. This position also has primary responsibility for drafting and negotiating privacy provisions and agreements, including data processing agreements for vendors, customers, distributors, and others for the Group and Region. This role will also be responsible for conducting appropriate privacy diligence necessary for vendor transactions, including ability of vendors to comply with applicable privacy laws.
KEY RESPONSIBILITIES AND FUNCTION:
- Respond to day-to-day questions from stakeholders, including related to notice, transparency, consent, and implementation of the global program.
- Assist with privacy-by-design activities for new products, solutions, services, or data uses, which will include both assistance to relevant stakeholders in conducting the initial privacy assessment and in determining and concluding data protection impact assessments where necessary.
- Oversee updates to the personal data inventories related to the business unit and functional area.
- Triage and coordinate response to individual rights’ requests under global privacy laws, including access and deletion requests, under the California Consumer Privacy Act, HIPAA, LGPD, GDPR, and others.
- Cooperate with other functional areas on response to individual rights’ requests.
- Draft, revise, negotiate privacy provisions and addenda in contracts, including data processing agreements for customer, vendor, and other contracts.
- Conduct privacy due diligence in transactions.
- Cooperate with other functional areas on privacy review of customer, vendor, and other contracts.
How will you get here?
REQUIREMENTS / QUALIFICATIONS:
Education
- Juris Doctorate or equivalent
- Bachelor’s degree or equivalent
Experience
- Minimum 5 years of experience advising multinational companies on global privacy and data protection requirements.
- Minimum 3 years of experience successfully responding to individual rights’ requests and conducting other privacy compliance activities, including working directly with business stakeholders.
- The candidate must have the ability to and experience in effectively coordinating multiple functional areas and stakeholders. Experience should be global in nature, including knowledge of individual rights and breach notification requirements in the United States, EU, Brazil, and Asia.
