Responsible for daily treasury management and compliance at Lyreco, a leading workplace solutions provider. Collaborating with international teams to optimize cash positioning and financial results.
BP
Hybrid Senior Privacy Analyst – DPO
Posted last month
About the role
- Senior Privacy Analyst responsible for managing data protection compliance projects at BP. Collaborating with teams and ensuring adherence to LGPD/GDPR standards in Brazil.
Responsibilities
- Maintain the compliance strategy and update internal processes in accordance with sector regulations and standards of the National Data Protection Authority (ANPD);
- Respond promptly and with high quality to the institution’s requests across one or more simultaneous projects;
- Stay current with national and international data privacy developments, information technology, project management and process management;
- Ensure privacy and data protection remediation proposals align with market best practices adapted to the institution’s needs and the projects in which they are applied;
- Propose new methodologies, guidelines, policies and operating models that provide agility, simplicity and security in the processing of personal data;
- Keep the institution in compliance with ANPD rules;
- Deliver excellent service in responding to Data Subject requests;
- Manage, investigate, record, contain and report security incidents involving personal data to the Authority;
- Maintain a proactive and highly organized attitude, able to handle a high flow of requests with attention to deadlines and SLAs to provide agile and effective responses;
- Actively participate in the technological and process solutions to align the institution with the Brazilian General Data Protection Law (LGPD - Law No. 13,709/18) and the European General Data Protection Regulation (GDPR);
- Support business areas in their LGPD/GDPR compliance proposals by suggesting process alternatives that enable the business;
- Support the structuring of the privacy and data protection program and monitor remediation activities across multidisciplinary teams;
- Prepare opinions and guidance for implementation of technological and process initiatives, ensuring LGPD/GDPR compliance within a Privacy by Design approach;
- Structure, review and keep the institution’s data inventory up to date;
- Record, investigate and manage crises related to incidents involving personal data;
- Participate in the communication, analysis and response process to data subject petitions/requests;
- Participate in the evaluation of vendors and partners regarding their LGPD/GDPR compliance;
- Perform risk assessments on implemented or in-development processes, preparing and recording DPIA/PIA/RIPDP documentation;
- Create and manage governance and privacy indicators for risk management, data subject handling and privacy incident management for management reporting;
- Conduct training and awareness programs related to privacy and data protection based on LGPD/GDPR concepts;
- Monitor the legislative landscape on privacy and data protection and structure remediation projects to eliminate risks;
- Extract and organize data and prepare reports;
- Ensure correct application of risk mitigation processes related to data protection and privacy;
- Ensure internal processes are optimized and controlled with productivity and reuse indicators;
- Understand data protection aspects and impacts in the hospital environment, supporting minimization actions and process improvements to achieve process compliance;
- Support emergency situations by preparing for and/or participating in drills related to environmental emergency response plans.
Requirements
- Bachelor’s degree in Law, Legal Services or related fields;
- Knowledge in Privacy and Data Protection;
- Knowledge of Digital Law;
- Certifications related to LGPD/GDPR;
- Proficient with Microsoft Office (Excel, PowerPoint, Word);
- Experience with OneTrust;
- Proficiency in English;
- Experience in LGPD/GDPR remediation projects in mid- to large-sized companies;
- Mandatory certification in LGPD/GDPR or specialization in these topics;
- Strong knowledge of data processing routines and process mapping;
- Strong knowledge of databases, systems architecture and data administration;
- Knowledge of information security;
- Experience developing and implementing corporate policies, standards and procedures;
- Experience in contract analysis (including international contracts).
Benefits
- Transportation allowance
- Meal allowance
- On-site cafeteria
- Medical assistance / Health insurance
- Dental assistance / Dental insurance
- Childcare assistance
- Total Pass: a benefits platform that provides access to gyms and studios for employees and dependents.
- Viva 365: programs and activities across five health dimensions — emotional, intellectual, physical, social and financial.
- Women’s health programs (pregnancy follow-up and family planning), ergonomics and workplace exercise initiatives, partnership with SESC – Well-Being programming, employee space, running and walking events.
- PAP (Personal Support Program) – a communication channel staffed by a broad team of specialists (psychologists, social workers, lawyers, educators, nutritionists, physiotherapists, physical educators, financial consultants and pet consultants).
- Employee Health Center – telemedicine, urgent care and exclusive appointment scheduling for employees with general practitioners, psychologists, physiotherapists and acupuncture services within BP.
- Healthcare professional day: May 12 is considered a holiday for the category; employees who work on this date are entitled to compensation according to criteria defined in the Collective Bargaining Agreement.
- Discounts and partnerships: partnerships with establishments across various segments offering discounts; see the updated list on Workplace, our internal communication channel.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Digital Services Analyst supporting digital products and sales efforts. Provide timely support to clients and internal colleagues while managing service tickets and projects.
Product Filing Analyst responsible for drafting and securing regulatory approval for insurance contracts. Assessing regulatory impacts and conducting quality reviews for compliance and effectiveness.
Complaints Analyst investigating and responding to customer complaints for Coinbase. Collaborating with legal teams and optimizing internal processes for a growing crypto platform.
Claims Coding Analyst handling claims editing and provider disputes at Healthfirst. Ensuring policy compliance with CMS and other coding guidelines while leading continuous improvement initiatives.
Cyber Assurance Analyst responsible for DISA STIG compliance evaluations and security control validations. Collaborating with technical teams and maintaining cybersecurity standards at Kwajalein Atoll.
Junior ESG Analyst supporting research and analysis on ESG factors for sustainability - focused organizations. Collaborating on data analysis and stakeholder engagement to drive positive impact in solar industry.
Consumer Analyst supporting KeyBank’s Language Access Program ensuring equitable access to banking for clients with diverse language backgrounds. Manage translation workflows and enhance language resources across the enterprise.
Cyber Defense Analyst managing security incidents within Eversource's Security Operations Center. Overseeing compliance, incident response, and audits for information security across systems.
Senior Project Controls Analyst analyzing project data and guiding Power BI Analysts at Eversource. Responsible for monitoring project performance in the capital program across multiple departments.