Join the World's Top Legal Talent Network

Role Summary: As the Global Privacy Manager at Lineage, you will develop and implement the strategy to centralize our global privacy compliance program, including the implementation of policies, procedures, and practices to ensure compliance with global data protection regulations. This role requires a deep understanding of privacy laws, risk mitigation, excellent communication skills, and the ability to collaborate with cross-functional teams. Key business partners include human resources, information technology and global legal counsel. The position reports to the Vice President – Global Corporate Compliance & Ethics and the ideal candidate will have an interest in and willingness to learn about and assist on other corporate compliance and ethics initiatives.

Company Overview: Lineage is one of the world’s leading temperature-controlled industrial REITs and integrated solutions providers with an unrivaled global network of over 400 strategically located facilities, totaling nearly 2 billion cubic feet of capacity across countries in North America, Europe, and Asia-Pacific. Coupling industry-leading expertise in end-to-end logistical solutions and innovative technology, Lineage partners with the world’s largest food and beverage companies to increase distribution efficiency, advance sustainability, minimize supply chain waste, and, most importantly, help feed the world. In recognition of the company’s leading innovations and sustainability initiatives, Lineage has been named a CNBC Disruptor 50 Company for three consecutive years, twice named a US Best Managed Company, named the No. 1 Data Science company, and 23rd overall on Fast Company’s list of The World’s Most Innovative Companies.

Role & Responsibilities: Strategy and Governance:

• Develop and implement privacy strategy and governance to comply with legislative and regulatory requirements as well as privacy commitments.
• Assess the organization’s data processing activities for compliance with applicable privacy laws.
• Champion privacy compliance throughout the organization.
• Liaise with legal counsel, management, and key departments, including human resources and information technology, to ensure the organization has and maintains appropriate privacy management practices.
• Partner with VP-Global Corporate Compliance & Ethics to Report to prepare periodic reports to the Board of Directors or relevant oversight committees, including program metrics, progress and highlights of risks and mitigation plans.

Operationalize Compliance Efforts:

• Maintain current knowledge of applicable international, federal, and state privacy laws, and accreditation standards, and monitor advancements in information privacy technologies to ensure organizational adaptation and compliance.
• Ensure all processing and/or databases are registered with the local privacy/data protection authorities where required.
• Conduct DPIAs for new projects and initiatives involving the processing of personal data.
• Collaborate with project teams to mitigate privacy risks, ensure compliance, and implement privacy by design principles.

Policy Management:

• Draft, maintain, and update all relevant data policies and standard operating procedures.

Training and Awareness:

• Develop privacy training materials and other communications to raise awareness and understanding of relevant privacy regulations and related legal and regulatory requirements.
• Conduct on-going privacy training and awareness activities.

Auditing and Incident Response:

• Develop and maintain an incident response plan for privacy incidents.
• Lead investigations into privacy breaches and coordinate appropriate responses.
• Work with Audit team to perform internal privacy and data governance audits.
• Partner with Business Units to Develop and apply corrective action procedures.

Vendor Management:

• Assess and manage privacy risks associated with third-party vendors.
• Partner with legal counsel to review and advise on business partner contracts, including privacy terms in contracts.
• Develop and manage procedures for vetting and auditing vendors for compliance with the privacy and data security policies and legal requirements.

Documentation and Record-Keeping:

• Establish a process for receiving, documenting, tracking, investigating and taking action on all complaints concerning the organization's privacy policies and procedures.
• Maintain records of privacy compliance efforts.
• Prepare and maintain documentation required for regulatory audits.

Qualifications:

• Bachelor’s degree in Business, Law, Finance, or a related field. Advanced degree or professional certification in privacy a plus.
• CIPP certification through the IAPP.
• Experience with OneTrust or other privacy enabling technologies.
• 5+ years of proven experience building a privacy and data governance program at a global company.
• Strong knowledge of GDPR, CCPA, and other global privacy laws.
• Excellent communication and interpersonal skills, including experience accurately interpreting and explaining state and federal laws, rules, contracts, regulations, and policies using plain talk.
• Experience delivering presentations to diverse audiences on a variety of laws, rules, policies, and procedures.
• Ability to collaborate with cross-functional teams and drive privacy initiatives.
• Must be willing to work in a fast-paced, growing company and adjust quickly to change.
• Must be able to manage multiple competing requests and ensure that projects are completed on a timely basis.
• Occasional travel to domestic and int’l locations.