Vice President, Group Data Privacy

The Job: 

The Vice President, Group Data Privacy will be responsible for providing legal advisory to senior management with a particular focus on data privacy, data security and data practices.  The successful candidate will be an integral part of GRM&C and work closely with various control functions to maintain and uphold data governance related disciplines across PCCW Group. The PCCW Group has a broad portfolio of businesses, spanning from fixed network, mobile, paid and free TV, stored value facilities, other digital ventures as well as an international footprint. 

Your role:

• Work closely with different business units to advise on data practices and monetization 

• Monitor and research on the latest trends, changes and development of local and global privacy laws and regulations, including their implications to group’s business activities 

• Develop and manage relationships with data privacy regulators worldwide 

• Maintain and update the group’s Data Privacy related policies and guidelines 

• Perform Privacy Impact Assessments (PIAs), Data Processing Agreements, Vendor Risk Assessments, Vendor Contract reviews, and other data privacy/security related contracts and matters 

• Promote awareness of data privacy requirements and expectations across the group 

• Lead the design and rollout of privacy training to business units across the group 

• Track the status of different privacy initiatives with stakeholders and offer privacy related guidance 

The successful candidate: 

• A qualified lawyer with no less than 8 years of post-qualification legal experience in an internationally recognized jurisdiction, with excellent drafting and negotiating skills. 

• Commercially minded, practical, responsive and focused on problem-solving, with proven success not only in identifying legal and regulatory risks, but in finding workable solutions to reduce risk to acceptable levels to enable the business to operate efficiently and intelligently 

• Sound knowledge with national data protection laws and practices, including an in-depth understanding of PDPO, GDPR and other global regulatory requirements 

• Excellent communication skills, people oriented, self-driven and able to interact effectively with stakeholders at all levels.  Ability to engage with other business units and stakeholders across the Group is important 

• Analytically minded, self-motivated, a good team player who is able to work independently 

• Keen interests in AI and technology is an advantage  

• Good command of written and spoken English and Chinese