Chief Privacy & EU Data Protection Officer

About The Position

Responsibilities

• Privacy Program Leadership & Governance Develop, implement, and maintain a comprehensive enterprise privacy program, including policies, procedures, standards, and supporting documentation.
• Lead privacy governance across the organization, partnering with senior leadership, Legal, Information Security, Compliance, and other stakeholders to align privacy, security, and risk strategies.
• Serve as the organization’s central privacy authority, providing guidance on privacy obligations, individual rights, and release-of-information matters.
• Compliance, Risk Management & Monitoring Conduct and oversee privacy risk assessments, audits, and ongoing compliance monitoring to identify, remediate, and report privacy risks.
• Evaluate privacy impacts of business initiatives, products, and vendor relationships, ensuring privacy-by-design and privacy-by-default principles are applied.
• Monitor and assess evolving global privacy laws and regulatory requirements, advising leadership on necessary program updates.
• Incident, Breach & Complaint Management Establish and manage processes for identifying, investigating, documenting, and resolving privacy incidents, complaints, and inappropriate data access or disclosures.
• Oversee breach determination and notification obligations, including regulatory assessments, reporting, and communications in accordance with applicable federal, state, and international breach laws.
• Track trends and root causes of incidents to drive continuous improvement and risk mitigation.
• Policies, Contracts & Third-Party Management Ensure privacy notices, consents, authorizations, and related disclosures remain accurate, current, and compliant with applicable laws.
• Oversee privacy and data protection requirements within third-party contracts, business associate agreements, and vendor relationships.
• Represent Genesys’ privacy interests in discussions with critical vendors, customers, and external partners.
• Training, Awareness & Advisory Lead the development and delivery of initial and ongoing privacy training and awareness programs for employees and relevant data processors.
• Monitor workforce compliance with privacy policies and training requirements.
• Advise business units on privacy requirements related to data collection, use, storage, sharing, and destruction.
• External Representation & Regulatory Engagement Serve as the organization’s primary privacy representative with regulators, government authorities, and other external stakeholders.
• Support regulatory inquiries, audits, and investigations related to privacy and data protection matters.
• Participate in industry discussions related to privacy legislation, standards, and best practices.
• Leadership & Professional Competencies: As a member of the Legal Leadership Team, the CPO/DPO is expected to demonstrate: Strong collaboration, teamwork, and cross-functional problem-solving skills Excellent verbal communication, active listening, and executive-level presence Outstanding written communication skills, including policy drafting and regulatory correspondence A service-oriented mindset with a strong commitment to internal and external stakeholders The highest standards of integrity, judgment, and professional trust