Legal Job :Legal Counsel – Digital and Data Privacy @ UNILEVER

ABOUT UNILEVER:

Be part of the world’s most successful, purpose-led business. Work with brands that are well-loved around the world, that strive to improve the lives of our consumers and the communities around us every day. Every day, nine out of ten Indian households use our products to feel good, look good and get more out of life – giving us a unique opportunity to build a brighter future. We promote innovation, big and small, to make our business win and grow; and we believe in business as a force for good. Our brilliant business leaders and colleagues provide mentorship and inspiration, so you can be at your best.

At HUL, we believe that every individual irrespective of their race, colour, religion, gender, sexual orientation, gender identity or expression, age, nationality, caste, disability or marital status can bring their purpose to life. So apply to us, to unleash your curiosity, challenge ideas and disrupt processes; use your energy to make the world a better place. As you work to make a real impact on the business and the world, we’ll work to help you become a better you!

Job Title:Legal Counsel- Privacy and Digital

Location:Mumbai HO

Department:Legal

Job Brief:

Digital is changing everything about how organizations work, and Unilever has been at the front of the digital transformation across all enterprise-level departments. Increasingly, all departments and decision-making are being data-led. More importantly, Unilever being consumer goods organization, there is increasing reliance on data to enhance data driven marketing.

With the Digital Personal Data Protection Act 2023 in place with further regulatory developments expected for the digital ecosystem, Unilever wants to enhance the already existing Privacy and Governance Program to support the expansion of data driven ambition of the organization. New regulations such as the Digital India Act governing new technologies and digital ecosystem are under active consideration which will impactareas of data protection, cybersecurity, data driven/digital marketing, use of digital and new technologies, digital commerce, etc.

The Legal Counselis responsible for ensuring that an organization is compliant with data protection laws and upcoming digital regulations. They will be responsible for the Privacy and governance strategy towards efficient compliance and operations for the organization and will be responsible to implement policies, procedures, training programs and infrastructure/systems to ensure a privacy by design approach throughout the organization. They would also be responsible for advising and building compliance not only for privacy but also in the area ofcybersecurity, data driven marketing, digital commerce, media, adoption of technologies like Gen AI, etc.

Responsibilities:

Advisory on complex legal issues concerning data privacy/data protection, novel technologies, media, digital marketing, digital laws, etc.

Manage prosecutions and adjudications before authorities and judicial forums around privacy, digital and TMT regulations.

Build an understanding of organization’s data processing activities/platforms/projects, digital ecosystems and technologies, the operating model and systems/processes governing the same. More importantly, developing a strong understanding of various processes, systems around (1) Security/Data protection/Cyber assurances, (2) Privacy Protection/Privacy risk assessments and other related compliances (3) Third Party/Data Processor Risk Management.

Continued assessment of organizations systems and processes, its gaps and necessary enhancements towards best industry standard compliance.

Conduct Privacy Risk/Impact Assessments for projects/activities/platforms, including risk mitigation, creating privacy notices/policies, consent statements, etc.

Contract Drafting, Negotiation and StandardizationforPrivacy, Data Processing and Protection, Media, Technology Services, etc.

Develop and implement Data Privacy and Protection policies, processes, and SOPs to ensure compliance with data protection laws and regulations.

Monitor and review the organization’s data processing and protection practices and work towards improvements. Work with Governance, IT, Security and Procurement teams to mitigate third party risks, ensure that data protection measures are in place and effective, investigate data incidents, etc.

Develop and deliver training programs to build a culture of privacy across our value chain, including third parties around privacy, digital regulations, etc.

Investigate and report data breaches to the appropriate authorities.

Keep up to date with changes in data protection laws and regulations and advise the organization accordingly.

Engage with the Central Privacy Team on updating policies and procedures at a local level, setting the local content for Privacy training, collaborating on Global/Local privacy programs/projects, high risk processes/activities being highlighted, leveraging their expertise, etc.

Developing an efficient Data Principal access and grievance redressal mechanism and manage the same.

Standardization of processes, agreements to bring efficiency on compliance in our digital ecosystem and use of data, technologies, etc.

Act as the point of contact for regulatory authorities on data protection matters.

Leading Advocacy directly and through industry associations on Privacy and Digital ecosystem regulations.

Requirements:

- Law degree from a reputable institute in India or abroad.
- Keen interest and understanding of technology, digital ecosystem, etc.
- Strong knowledge of Indian and Global Privacy Regulatory Landscape and Frameworks. Awareness of the legal and implementation landscape of developed jurisdictions with stronger/older privacy legal frameworks.
- Robust knowledge and Experience/Involvement in advisory, strategy and implementation of Data Privacy, Data Protection and Governance Programs and Compliances.
- Experience in regulatory advisory, compliance and contracting in the area ofcyber laws, digital ecosystem/technology regulatory landscape, TMT, particularly assessing and advising novel technologies and ecosystems with digital approach.
- At least 5+ years with reputed companies, Big 4s, law firm with experience.
- Additional qualifications in information technology, Privacy (CIPP, CIPM, CIPT, etc.), cyber security, IT infrastructure and operations, programming would be considered beneficial.
- Excellent communication and interpersonal skills, particularly to lead senior management discussions.
- Strong analytical and problem-solving skills.
- Ability to work/execute independently and as part of multiple cross-functional teams in a fast-paced environment.
- Project Management Skills.

Job Title:Legal Counsel- Privacy and Digital

Location:Mumbai HO

Department:Legal

Job Brief:

Advisory on complex legal issues concerning data privacy/data protection, novel technologies, media, digital marketing, digital laws, etc.

Manage prosecutions and adjudications before authorities and judicial forums around privacy, digital and TMT regulations.

Continued assessment of organizations systems and processes, its gaps and necessary enhancements towards best industry standard compliance.

Conduct Privacy Risk/Impact Assessments for projects/activities/platforms, including risk mitigation, creating privacy notices/policies, consent statements, etc.

Contract Drafting, Negotiation and StandardizationforPrivacy, Data Processing and Protection, Media, Technology Services, etc.

Develop and implement Data Privacy and Protection policies, processes, and SOPs to ensure compliance with data protection laws and regulations.

Monitor and review the organization’s data processing and protection practices and work towards improvements. Work with Governance, IT, Security and Procurement teams to mitigate third party risks, ensure that data protection measures are in place and effective, investigate data incidents, etc.

Develop and deliver training programs to build a culture of privacy across our value chain, including third parties around privacy, digital regulations, etc.

Investigate and report data breaches to the appropriate authorities.

Keep up to date with changes in data protection laws and regulations and advise the organization accordingly.

Engage with the Central Privacy Team on updating policies and procedures at a local level, setting the local content for Privacy training, collaborating on Global/Local privacy programs/projects, high risk processes/activities being highlighted, leveraging their expertise, etc.

Developing an efficient Data Principal access and grievance redressal mechanism and manage the same.

Standardization of processes, agreements to bring efficiency on compliance in our digital ecosystem and use of data, technologies, etc.

Act as the point of contact for regulatory authorities on data protection matters.

Law degree from a reputable institute in India or abroad.

Keen interest and understanding of technology, digital ecosystem, etc.

Strong knowledge of Indian and Global Privacy Regulatory Landscape and Frameworks. Awareness of the legal and implementation landscape of developed jurisdictions with stronger/older privacy legal frameworks.

Robust knowledge and Experience/Involvement in advisory, strategy and implementation of Data Privacy, Data Protection and Governance Programs and Compliances.

Experience in regulatory advisory, compliance and contracting in the area ofcyber laws, digital ecosystem/technology regulatory landscape, TMT, particularly assessing and advising novel technologies and ecosystems with digital approach.

At least 5+ years with reputed companies, Big 4s, law firm with experience.

Additional qualifications in information technology, Privacy (CIPP, CIPM, CIPT, etc.), cyber security, IT infrastructure and operations, programming would be considered beneficial.

Excellent communication and interpersonal skills, particularly to lead senior management discussions.

Strong analytical and problem-solving skills.

Ability to work/execute independently and as part of multiple cross-functional teams in a fast-paced environment.

Leave a Reply Cancel reply