Gaisano Malls is a leading player in the retail and mall industry in the Philippines, committed to providing outstanding shopping experiences. We take the security and privacy of our customers, employees, and partners seriously, and are looking for a dedicated Data Privacy Officer to help us uphold the highest standards of data protection.
Position Summary:
As a Data Protection Officer, you will be responsible for designing and implementing our data privacy and security protocols. Working across departments, you'll ensure our practices comply with data protection laws, including the Philippines' Data Privacy Act. This role involves providing guidance, conducting audits, and managing data breach responses to safeguard sensitive data within our retail and mall operations.
Key Responsibilities:
Develop, implement, and maintain data privacy policies and practices for our retail and mall operations.
Ensure full compliance with the Philippines' Data Privacy Act, GDPR (where applicable), and other relevant data protection regulations.
Conduct privacy impact assessments, risk assessments, and audits to identify and mitigate data privacy risks.
Serve as the point of contact with the National Privacy Commission (NPC) and handle any data-related inquiries or requests.
Collaborate with the IT, legal, and operational teams to integrate data privacy measures into all processes and systems.
Lead data privacy training programs to educate employees on data protection practices.
Oversee and manage incident response procedures for data breaches and ensure timely reporting to the NPC.
Keep up to date on regulatory developments and implement necessary adjustments to stay compliant.
Qualifications:
Bachelor's degree in Law, Information Technology, Business Administration, or a related field.
Proven experience as a Data Privacy Officer or in a data protection role, ideally within the retail or mall operations sector.
Comprehensive knowledge of the Philippines' Data Privacy Act, GDPR, and best data protection practices.
Familiarity with privacy impact assessments and data protection frameworks.
Strong interpersonal and communication skills, with the ability to lead cross-functional training and collaboration.
Certification in data protection (e.g., CIPP, CIPM, or equivalent) is an advantage.
What We Offer:
Competitive salary and benefits package.
Opportunities for career growth within a dynamic and fast-growing company.
Supportive team environment with an emphasis on collaboration and innovation.
Flexible work arrangements, including remote or hybrid options.