Regional Data Privacy Officer

Get to know the Role:

This position will focus on product reviews and internal and external policy, processes and procedure development to help Grab meet its privacy obligations. In this role you will help develop and execute a comprehensive compliance strategy, conduct risk assessments, lead core documentation and compliance efforts, and help to review, enhance, and manage the day to day operation of Grab's privacy programs and compliance with SEA privacy frameworks. Work on projects related to ongoing compliance with data protection and privacy laws, and related requirements.

Establish and manage tools for documenting and tracking compliance with Grab's global legal obligations, including privacy impact assessments. Coordinate internal and external audits of our privacy systems and procedures. Provide ongoing management, content development and oversight of the privacy training program. Communicate project roadmaps, priorities and key status updates to project stakeholders and business teams.

The day-to-day activities:

• Conduct product privacy vulnerability assessments and provide concrete feedback to mitigate challenges

• Draft and review technology agreements

• Assist in responding to inquiries from product and business groups across the company regarding privacy and

• security requirements applicable to their activities

• Ensure compliance with Grab policies, laws and regulations relating to privacy and international data transfers

• Develop and maintain internal practices to support Grab's privacy initiatives

• Perform privacy reviews working with product development teams to support Grab’s privacy by design approach for new product features

• Collaborate regularly with leadership to provide strategic guidance on emerging privacy requirements

• Support the business on a global basis by partnering across the organization to help ensure compliance with Grab’s privacy obligations and

• applicable data protection laws

• Maintain data processing and data transfer contracts that are necessary to transfer personal data among various entities in different countries

•  and to third parties

• Provide strategic privacy advice across the business with a focus on innovative approaches to compliance

The must haves:

• Familiarity with Cloud Computing and Software as a Service is a must

• At least 5 years of inhouse experience focused on data privacy in Singapore, preferably in the technology industry

• Keen attention to detail and accuracy

• Excellent written and verbal communications skills

• Ability to prioritize and manage multiple projects 

• Ability to work in a fast-paced environment

• Organized, responsive, and able to gain support and consensus with multiple stakeholders

• Degree in law or equivalent

• CIPP or CIPM other certifications a plus

• Knowledge of GDPR would be an added advantage over other candidates