Director, Privacy Officer & Executive Counsel
Questrade
- Toronto, ON
- Permanent
- Full-time
- Health & wellbeing resources and programs
- Paid vacation, personal, and sick days for work-life balance
- Competitive compensation and benefits packages
- Hybrid and flexible work arrangements
- Career growth and development opportunities
- Opportunities to contribute to community causes
- Work with diverse team members in an inclusive and collaborative environment
- Providing legal advice, guidance and support on IT and strategic initiatives, data governance, data quality management and other legal matters;
- Drafting, review and negotiation of a broad range of commercial agreements, including software-as-a-service (SaaS), software licensing, content licensing, marketing, sponsorship, confidentiality, professional services, and other agreements as required;
- Assessing and making recommendations for improving privacy practices and implementing new technology and resources for greater efficiency;
- Collaboration with data science, IT, compliance and strategic business units;
- Review Privacy Impact Assessments for major initiatives and organizational changes
- Establish and implement the privacy policy, and program controls across the enterprise and guide business units within each of the subsidiaries in respect of their privacy obligations;
- Interpret privacy laws and regulations, formulate corporate positioning and incorporate these into the privacy policies and disclosures across the enterprise;
- Coordinate with other appropriate persons responsible for related disciplines and functions within the organization;
- Be responsible for the privacy consent process, ensuring all consent and related disclosures are operating and archived appropriately;
- Provide advice to the business units in respect of data classification (PII), data retention and data destruction;
- Be responsible for the ongoing assessment and revision of program controls;
- Lead/ manage internal and external privacy audits and implement audit recommendations;
- Lead and administer the Privacy Committee and provide reports as necessary to the Compliance Committee and/or the Board of Directors;
- Manage all privacy incidents and provide reports to the appropriate Privacy Commissioner(s);
- Work closely with the Compliance Team to ensure that privacy incidents are reported to financial services regulatory bodies;
- Keep ahead of upcoming changes is privacy legislation in all jurisdictions where the Company operates and update key business divisions on new regulation;
- Advocate Privacy by Design principle implementation across technical and not technical operations;
- Assists with the development of Privacy Awareness and Training;
- Provide input, guidance and leadership, on open banking, Bill C-11, Bill c-27, Law 25, data portability and other relevant regulation outside of Canada
- 5-10 years of relevant post-call experience;
- Excellent communication and drafting skills;
- Ability to manage multiple competing tasks in a high-pressure environment;
- Sound legal and business judgment to provide practical solutions to complex privacy and data access issues;
- Highly developed negotiation skills and the ability to quickly get to the key issues and present persuasive legal positions;
- Proven ability to work independently and collaboratively with a broad range of stakeholders;
- A demonstrated leadership style and work behaviours that align with our core cultural values;