Head Of International Compliance, Data Protection and Privacy
This was removed by the employer on 5/23/2023 5:04:00 AM PST
Not to worry we have many other jobs on the site;
Browse all jobs
Browse the IS/IT Category
Search for Head Of International Compliance, Data Protection and Privacy jobs in London-UK
Search all Head Of International Compliance, Data Protection and Privacy postings
Full Time Job
Named Most Valuable Sports Agency by Forbes for eight consecutive years, CAA represents more than 2,000 of the world's top athletes in football, baseball, basketball, hockey, soccer, in addition to coaches, on-air broadcasters, and sports personalities and works in the areas of broadcast rights, corporate marketing initiatives, social impact, and sports properties for sales and sponsorship opportunities. Founded in 1975, CAA is headquartered in Los Angeles, and has offices in New York, Nashville, Memphis, Chicago, Miami, London, Munich, Geneva, Stockholm, Shanghai, and Beijing, among other locations globally.
In this newly created role, the Head of International Compliance, Data Protection and Privacy will work collaboratively with internal stakeholders and external regulatory agencies to ensure compliance and mitigate risk across the company. The role will drive CAA's European and Asian offices approach to management and mitigation of risk and compliance across all areas of CAA's business, including Music Touring, TV, Sports Talent & Property Sales, Brand Consulting, CAA Base and Stellar (Football) and CAA Brand Management.
In addition, the role will ensure CAA's International businesses remain compliant with all relevant data protection and privacy requirements and take a pro-active approach in identifying and mitigating data protection risk across the business.
The role will directly report into the General Counsel – Europe & Asia, based in London but will work closely with Corporate, Compliance and Data Protection colleagues in the Office of the Chief Legal Officer (OCLO) in Los Angeles.
• Oversight of the risk and compliance function for CAA's International Offices, including AML and related issues, anti-bribery issues (e.g., FCPA and UKBA), ''Failure to Prevent'' offences in the UK (Criminal Finances Act) and global Sanctions policies.
• A deep understanding of risk management around sanctioned individuals and entities (whether UK, EU or US) and advising lawyers and business executives in relation to recommended approaches.
• Assisting with implementation of global policies locally. For example, Sanctions policies, Bribery policies and Gift & Business Entertainment policies, Code of Ethics and Business Conduct and Supplier Code of Conduct.
• Understanding and advising the business on relevant Environmental and Sustainability frameworks.
• Working with the OCLO to ensure CAA's International Compliance workplace training programs for employees remain ''best in class''.
• Ensuring that CAA has a robust approach with third parties it works with in relation to Compliance issues such as Sanctions, Modern Slavery and Bribery.
• Perform risk assessments to understand risk level, significance and scope to ensure robust and effective Compliance controls are in place across the business.
• Assistance with Compliance (UK, Europe and Asia) due diligence, as required.
• Keep up to date with, and understand, relevant laws and regulations.
• Monitor CAA's compliance with laws, regulations and internal policies.
• Investigate irregularities and non-compliance issues and highlight or escalate areas of concern.
• Assist in the gathering of internal information in response to regulatory requests.
• Collaborate with all CAA departments to create a culture of Compliance.
• Serve as the main point of contact within CAA International for staff members, regulators, and relevant public authorities on issues related to data protection.
• Ensure that CAA policies and businesses comply with GDPR / UK Data Protection Act or equivalent legislation internationally.
• Leading the approach to, and handling of, Data Subject Access Requests across CAA's International offices.
• Evaluate the existing data protection / data transfer framework to identify areas of no or partial compliance and rectify any issues.
• Working closely with CAA's Chief Information Security Officer team and conduct annual data mapping exercises for UK, Europe and Asia.
• Understanding and implementing ''Privacy by Design'' in relation to projects.
• Promote a culture of data protection and compliance across CAA International to ensure employees understand their importance.
• Provide expert advice and educate employees on important data compliance requirements
• Assisting the Business Affairs teams with the review and negotiation of IT Security and Data Protection clauses in contracts and Data Protection Agreements (DPAs).
• Assistance with Data Protection (UK, Europe and Asia) due diligence, as required.
• Completing Compliance and GDPR onboarding questionnaires required by new clients.
• Draft new and amend existing internal data protection policies, guidelines and procedures, in consultation with key stakeholders.
• Deliver training across all business units to staff members who are involved in data handling or processing; ensure robust document retention policies are in place and are being followed.
• Conduct audits to ensure compliance and to address potential issues.
• Maintain records of all data processing activities of the company.
• Strong academic background: LLB (Hons), BA (Hons) or BSc (Hons) 2:1 or above and (if relevant) Graduate Diploma in Law Merit and above; LPC Merit and above.
• At least 8-10 years of working as a Compliance / Data Protection professional at a large multinational or global professional services firm (e.g. a top tier law or accountancy firm), with some exposure to privacy laws in Asia (mainly Singapore, China and Hong Kong).
• Strong preference is for a legally qualified solicitor (England & Wales) but will consider outstanding candidates without a legal qualification who can demonstrate their ability to excel in the role.
• Strong knowledge of all Compliance related law and regulation including AML and related issues, anti-bribery issues (e.g., FCPA and UKBA), ''Failure to Prevent'' offences in the UK and global Sanctions policies.
• Strong knowledge of EU data privacy and data protection regulation, and a good understanding of other major privacy frameworks and evolving legislation worldwide.
• Sufficient knowledge of information technology and data management systems required.
• Strong demonstrated ability to establish collaborative working relationships at all levels and build consensus.
• Demonstrable experience running investigations into Compliance related issues.
• Ability to work supervised and unsupervised, exercise leadership, and influence change.
• Excellent communication s