Director Data Protection

Requisition ID:887894

Position:Full-Time

Total Rewards:Benefits/Incentive Information

If you've worn a pair of glasses, we've already met.

We are a global leader in the design, manufacture, and distribution of ophthalmic lenses, frames, and sunglasses. We offer our industry stakeholders in over 150 countries access to a global platform of high-quality vision care products such as the Essilor brand, with Varilux, Crizal, Eyezen, Stellest and Transitions, iconic brands that consumers love such as Ray-Ban, Oakley, Persol and Oliver Peoples, as well as a network that offers consumers high-quality vision care and best-in-class shopping experiences such as Sunglass Hut, LensCrafters, and Target Optical, and leading e-commerce platforms.

Our portfolio of more than 150 renowned brands span various categories, from frames, lenses and instruments to brick and mortar and digital distribution as well as mid-range to premium segments. Our Shared Services Team, accompany and enable others within the EssilorLuxottica collective to achieve their targets. They keep people and projects running smoothly, ensuring every part of our business is provided for and well taken care of.

Join our global community of over 200,000 dedicated employees around the world in driving the transformation of the eyewear and eyecare industry. Discover more by following us on LinkedIn!

GENERAL FUNCTION

The Director - Data Protection (EyeMed) leads and oversees all ongoing activities related to the development, implementation, maintenance of, and adherence to the Company's privacy and data protection program. This includes compliance with state and federal privacy regulations and the Company's internal privacy policies and procedures.

MAJOR DUTIES AND RESPONSIBILITIES

• Builds and oversees a strategic and comprehensive privacy program that develops, maintains, and implements policies and processes that enable consistent and compliant privacy practice.
• Works with Sr. Management, security, legal and compliance to establish governance for the privacy program.
• Collaborates with information security officer to ensure alignment between security and privacy compliance.
• Establishes ongoing process to track, investigate, and report inappropriate access and disclosure of protected information.
• Establish process for receiving, documenting, tracking, investigating and taking action on complaints concerning the Company's privacy policies and procedures in coordination and collaboration with other similar functions.
• Manages all required breach determination and notification processes under HIPAA and applicable state breach rules, requirements.
• Oversees, develops, and delivers ongoing privacy training to Company workforce.
• Manages privacy complaints, breaches and investigations by regulatory authorities.
• Interacts and provide reporting analysis to executive-level leadership on all privacy issues.
• Assists the identification, implementation, and maintenance of the Company's privacy policies and procedures in coordination with Company management and legal counsel.
• Initiate and oversees periodic privacy risk assessments for the Company, including all mitigation and remediation plans/efforts
• Maintain current knowledge and compliance of state and federal privacy regulations applicable to Operations
• Ensures the Company maintains appropriate privacy and confidentiality consents authorization forms and information notices and materials reflecting current privacy practices

BASIC QUALIFICATIONS

• Bachelor's Degree
• 10 years experience as a privacy officer.
• Thorough knowledge and experience with privacy laws in North America, including HIPAA and state privacy regulations.
• Experience and skill at writing policies and procedures, directing and managing external privacy counsel and providing opinions/guidance to the Company on privacy issues.
• Experience and thorough knowledge of business agreements.
• In-depth experience with data privacy compliance and incident management, including implementation of breach response protocol, oversight of regulatory, individual notifications/compliance.
• Experience with budget oversight, management.
• Strong interpersonal relationships, cross cultural sensitivity, builds effective teams

PREFERRED QUALIFICATIONS

• Juris Doctorate (J.D.) from an accredited law school.
• Bachelor's degree in a healthcare-related field.
• Privacy certification, such as Certified Information Privacy Professional (CIPP).

Employee pay is determined by multiple factors, including geography, experience, qualifications, skills and local minimum wage requirements. In addition, you may also be offered a competitive bonus and/or commission plan, which complements a first-class total rewards package. Benefits may include health care, retirement savings, paid time off/vacation, and various employee discounts.

Upon request and consistent with applicable laws, EssilorLuxottica will provide reasonable accommodations to individuals with disabilities who need assistance in the application and hiring process. To request a reasonable accommodation, please call the EssilorLuxottica SpeakUp Hotline at 844-303-0229 (be sure to provide your name and contact information so that we may follow up in a timely manner) or email HRCompliance@luxotticaretail.com.

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, gender, national origin, social origin, social condition, being perceived as a victim of domestic violence, sexual aggression or stalking, religion, age, disability, sexual orientation, gender identity or expression, citizenship, ancestry, veteran or military status, marital status, pregnancy (including unlawful discrimination on the basis of a legally protected pregnancy or maternity leave), genetic information or any other characteristics protected by law. Native Americans in the US receive preference in accordance with Tribal Law.