Regional Privacy Officer, North America and Specialty Care

Join Sanofi as Regional Privacy Officer. Your responsibility in this role will be to lead the implementation of our Corporate Privacy strategy within North America and SpecialtyCare. You will design and monitor the risk-based execution of the privacy strategy, actively monitor local privacy regulations/enforcements, ensure Privacy by design of our key business and digital initiatives. 

In this role you will act as a leading officer and expert on Data Privacy, promote and maintain a culture of privacy in the workplace of Sanofi.  You will drive Privacy as a competitive advantage and a key success factor of our digital transformation & data democratization, allowing Sanofi to accelerate the use of personal information to generate deeper insights for our business. 

This is a full-time role with approx. 10% travel required. 

Key accountability

Reporting to our Chief Privacy Officer and group DPO, you will lead a team of Privacy Officers. You will be part of a global team.  

• Manage and develop a diverse team of local/GBU Privacy Officers, ensuring they have adequate resources and capability to perform their roles;

• Appoint and manage a network of Privacy Champions within the relevant local departments; 

• Chair the Regional and GBU Privacy Working Groups consisting of appointed Privacy Champions. Through this working Group, design, secure sponsorship of and deliver the action plan for Privacy;

• Actively contribute to the design of the Privacy global framework and relevant standards, processes, and tools, ensuring compliance requirements are met;

• Actively monitor local privacy regulations/enforcements, and implement local adaptations of global procedures when required;

• Contribute to internal position papers, represent Sanofi in industry advocacy efforts with Trade associations and Data Protection Regulators;

• Report the status of the implementation of the privacy program and operations with [Region] and [GBU] through established KPIs;

• Ensure privacy by design principles are effectively implemented within regional and local business and digital initiatives, applying a risk-based and data subject centric approach;

• Partner with the Functional Privacy Officers in ensuring Global initiatives are compliant with local practices and regulations, escalating showstoppers and offering local resolutions;

• Ensure the records of Processing Activities (ROPAs) are maintained and accurate;

• Independently Review Data Protection Impact Assessments (DPIAs) for high-risk data processing activities;

• Actively contribute to Sanofi Global Privacy Training strategy in ensuring Materials designed centrally are fit for purpose, review translations, and establish the relevant priority audience; 

• Organize local and ad hoc training session in line with local needs;

• Oversee Individual Rights Requests, ensuring Data subject rights are upheld in line with regulatory requirements and Sanofi’s commitments to privacy;

• Coordinate the management, assessment, and resolution of data breaches, ensuring timely notification to data subjects and Data Protection Authorities. 

• Oversee the effective closure of CAPAs originating from external and internal audits

Key Working Relationships

Internal

• Direct privacy officers and champions with clear expected outcomes in line with the local action plans;

• As the voice of privacy rights of employees, act with integrity and independence with regards to resolutions of potential conflicts;

• Establish credibility and influence local senior stakeholders (ExCom-1, ExCom-2) within General management, Digital, P&C, R&D, Commercial, Procurement, LEBI

• Partner with Internal audit and internal controls teams in ensuring assurance plans are integrated across the lines of defense without duplication

• Confident in escalating project risks and issues to senior leaders individually and collectively via the relevant governance mechanism

External:

• As the voice of privacy rights of external Data Subjects (candidates, consumers, patients), act with integrity and independence with regards to resolutions of potential conflicts;

• As the main point of contact of Data Protection Authorities, establish an active relationship in line with Sanofi commitments;

• Represent Sanofi within local Privacy and trade associations

Qualifications:

• Master or bachelor’s degree (law or computer sciences is an advantage)

• CIPP/E, CIPP/US, CIPM or similar privacy qualification is mandatory

• In-depth knowledge of privacy and data protection laws

• 10 to 15 years experience working in highly regulated environments, preferably in project and/or compliance management / experience in GDPR, US Laws and Data Privacy

• Experience working in an international environment and proven leadership experience

• Multi-stakeholder management based on influence rather than formal relationships

• Excellent communication, negotiation, writing and advisory skills

• Strong business acumen in Healthcare/Life science sector

• Ability to balance legal/company requirements and business enablement

• Willingness to travel

Sanofi Inc. and its U.S. affiliates are Equal Opportunity and Affirmative Action employers committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race; color; creed; religion; national origin; age; ancestry; nationality; marital, domestic partnership or civil union status; sex, gender, gender identity or expression; affectional or sexual orientation; disability; veteran or military status or liability for military status; domestic violence victim status; atypical cellular or blood trait; genetic information (including the refusal to submit to genetic testing) or any other characteristic protected by law.

#GD-SA  

#LI-SA

At Sanofi diversity and inclusion is foundational to how we operate and embedded in our Core Values. We recognize to truly tap into the richness diversity brings we must lead with inclusion and have a workplace where those differences can thrive and be leveraged to empower the lives of our colleagues, patients and customers. We respect and celebrate the diversity of our people, their backgrounds and experiences and provide equal opportunity for all.

Salary : $165,000 - $209,000