Data Protection Officer- Pharmacy

DPO - Uniphar Supply Chain Division

We are seeking a highly skilled and experienced Data Protection professional to join our pharmaceutical services company. In this role, you will collaborate closely with the Legal, Compliance, Information Technology, and Programs departments to develop and enforce policies and standards that adhere to applicable data protection regulations. Your primary responsibilities will involve ensuring the privacy and security of our data assets and maintaining compliance with relevant laws.

The Data Protection Officer will report to the Data Protection Compliance Officer. The role of the Data Protection Officer will have the following main duties and responsibilities on behalf of his / her Organisation.

Responsibilities

• Ensuring compliance and adherence by the relevant group entity to the Uniphar Data Protection Framework
• Developing policies, procedures, and practices relating to data protection activities
• Monitoring performance of policies, procedures, and practices relating to data protection activities and informing senior management of the organisations compliance with the GDPR
• Collaborate with Information Security teams to maintain comprehensive records of all data assets and exports. Develop and maintain a data security incident management plan to promptly address and remediate security incidents. This includes conducting impact assessments, managing security breach responses, addressing complaints and claims, handling notifications, and responding to subject access requests (SARs).
• Monitoring data protection and privacy enforcement actions and guidance, including from European Data Protection Board and member countries.
• Risk-based assessment and mitigation considering the nature, scope, context and purpose of the organisation’s processing.
• Ensuring appropriate Technical and Organisational Measures are documented and implemented.
• Creating inventories and maintaining up to date records of processing operations
• Advising the organisation, where requested, regarding data impact assessments, Legitimate Interest assessments and Privacy by Design and Default
• Ensuring that data transfers between group entities are undertaken in compliance with documented policies and procedures.
• Advising on adherence to the Retention Schedule.
• Serving as the organisations point of contact with the relevant Data Protection Authorities
• Responding to communications from the organisation’s customers and employees regarding the processing of their personal data and the exercise of their individual data protection rights under the GDPR.
• Responding to Personal Data Breaches and reporting as required to the Data Protection Commission / Data Subjects
• Directing relevant working groups dealing with data processing activities, including participating regularly in meeting of middle and senior management.
• Conducting awareness raising activities and training the organisation’s employees on data protection and privacy.
• Reporting to the Senior Management Team of the organisation monthly
• Preparing annual reports of Data Protection activities
• Assist with Audits from Regulators, Clients, and the Uniphar Data Protection compliance office.

Requirements :