Data Privacy Associate Compliance Specialist Mississauga, ON, Canada






 The Data Privacy Associate assists the Canadian Privacy Officer in assessing, supporting, and conducting ongoing compliance monitoring. You will also maintain the company’s compliance with data privacy requirements (policies, legislation and regulations) in a fast-changing environment; work with stakeholders to implement, operationalize, and oversee privacy requirements and compliance for all business activities and to ensure alignment between privacy function and business activities.

Typical Accountabilities: Data Privacy of Clinical Data Subjects • Canadian privacy support for results-based scientific studies, including clinical trials, real-world evidence, and externally sponsored research studies. This includes review and guidance regarding contracts, ICFs, templates and any new study technology implemented. Training the Business • Review, update and deliver training (in consultation with Canadian Privacy Officer, Global Privacy Office, legal, outside counsel and local resources as necessary) with respect to: • Company policy implementation • Privacy impact assessments • Data Transfer Assessments • Ongoing monitoring and enhancing risk assurance capabilities • Evolving expectations of supervisory authorities Ensuring Company Compliance with Data Privacy Rules and Regulations • Prepares and reviews data sharing agreements and the privacy components of procurement agreements for all Canadian market activities that involve personal information as well as global reviews for activities that impact or are launched in Canada. • Proactively maintains a register of common privacy clauses and Canadian privacy requirements included in legal agreements to use as a tracking and precedent tool for upcoming contract reviews. • Provides privacy analysis for software applications, Internet of Things projects, cloud computing services, database designs and other information technology projects, including projects that involve artificial intelligence or automated decision-making. • Provides vendor risk management by assessing vendors to ensure they have proper technical and organizational safeguards to protect AstraZeneca’s interest and that of its stakeholders (including HCPs, HCO’s and patients). Consult with members of the Global Privacy Office as required on privacy impact assessments. • Maintains a register of common safeguard language in vendor agreements to expedite vendor management review. • Ensures local legal and/or regulatory requirements to enable compliant processing and transfer of personal data within the AstraZeneca Group of Companies (Affiliates) and among AstraZeneca partners/vendors. • Partner with the local or Global Assurance team within local and Global Compliance, Internal Audit, and independent auditing resources (where necessary) to monitor compliance with applicable data protection and privacy laws and broader data privacy requirements.

Click here to Apply on indeed