Privacy Associate

Known internally as Legal Compliance Professional - Privacy and Data Protection, this role has a preferred location of Southfield, Michigan, USA or London, England. This position will report to the Associate General Counsel overseeing Privacy & Data Protection. Paid relocation is not available.

• Provide support in areas related to compliance with state, federal, and global data privacy statutes and regulations, including GDPR, CCPA, PIPL, HIPAA, HITECH, and ePrivacy Directive.


• Provide support in the maintenance and enforcement of AlixPartners' data governance policies and programs and AlixPartners' privacy policies and programs.


• Under the supervision of the senior professionals on the Privacy and Data Protection team:

+ Respond to client questionnaires and due diligence requests
+ Review data protection agreement, data sharing agreement, standard contractual clauses, and Business Associate Agreements for consistency of preferred terms related to data governance, privacy, and security
+ Conduct, execute, and document Privacy Impact Assessments and Risk Assessments for programs, processes, and projects across the organization
+ Intake, document, and respond to Data Subject Requests
+ Partner with cross functional teams firmwide to identify and document privacy risks within new and existing projects, and develop mitigation plans
+ Conduct privacy assessments of third-party vendors and tools in conjunction with the procurement team and other stakeholders

• Monitor changes in the privacy landscape and translate to actionable measures.


• Draft privacy, data governance, and data protection communications for internal use.


• Complete other administrative tasks related to the execution of a Privacy Program (e.g. schedule stakeholder meetings, take meeting minutes, breach response participation, etc.).


• Build positive relationships with stakeholders across the broader organization.


• Additional responsibilities as identified. This description is not designed to encompass a comprehensive listing of required activities, duties, or responsibilities.
  
  In this position on AlixPartners' Corporate Services Legal Team, you will work with other Legal, Compliance, and Risk professionals providing support in the areas of privacy and data protection. The ideal candidate will have excellent writing, organization, and communication skills, along with high attention to detail and accuracy., Relevant data governance, privacy, compliance, or paralegal experience.


• Familiarity with at least one of the following data privacy regulations and one associated security frameworks GDPR, CCPA, HIPAA, NIST frameworks, ISO frameworks, etc.


• Track record of effectively working with data from multiple sources - willingness to dig-in and understand the data, leveraging creative thinking and problem-solving.


• Experience with Privacy Impact Assessments and Data Subject Access Requests is a plus.


• Contract review experience is a plus.


• Privacy certifications (e.g. CIPM, CIPT, CDPSE) is a plus.


• Experience using OneTrust Privacy Management Software is a plus.


• Experience in privacy with one of the following privacy principles or technologies is preferred: privacy by design, user data protection, GDPR, CCPA, data inventory, DLP, encryption anonymization or privacy impact assessments.


• Experience with concepts and practices such as threat modelling, data anonymization and classification, auditing access to data, and review of requests for data access is preferred.


• Must be highly collaborative and able to work in a team-based environment offering services to a fast-paced, multi-disciplinary organization negotiating for competing priorities and resources.


• Ability to handle and protect confidential, sensitive information.


• Strong initiative, self-driven to learn and deliver results without daily supervision.


• Excellent written and verbal communication skills in English.


• Core working hours are generally 8:30 AM - 5:30 PM, Monday - Friday; willingness to work outside of normal business hours, and as unique projects/needs arise.


• Ability to work full time in an office and remote environment


• Must become familiar with, and promote and abide by, our Core Values as defined by the AlixPartners' Code of Conduct and foster an inclusive environment with people at all levels of an organization., Degree

Discipline

At AlixPartners, we solve the most complex and critical challenges by moving quickly from analysis to action when it really matters; creating value that has a lasting impact on companies, their people, and the communities they serve. By understanding, respecting, and honoring the needs of our employees, clients, and communities, AlixPartners actively promotes an inclusive environment. We strongly believe in the value that diversity brings to our experiences and are committed to the perpetual enhancements of initiatives, policies, and practices. We hold ourselves accountable by providing the space for authenticity, growth, and equity for everyone.

AlixPartners has embraced a hybrid work model to provide flexibility and support our employees' work-life integration. Our hybrid model combines a mix of in-person at an AlixPartners office on Tuesday, Wednesday, and Thursday, with remote working options for Monday and Friday., The firm offers a comprehensive benefits program including health, vision, dental, disability, , tuition reimbursement, identity theft protection, and mental wellness support.