job description
Join ACLC College, a leading educational institution committed to excellence in education and data privacy, as our next Data Protection Officer (DPO). In this pivotal role, you will lead our data privacy compliance initiatives, ensuring adherence to the Data Privacy Act of 2012 (Republic Act No. 10173) and other global data protection regulations. This is a remote position based in Bali, Indonesia, offering the flexibility to work from vibrant locations like Canggu, Ubud, or Denpasar while making a significant impact on our organizationās data governance.
As the DPO, you will act as the bridge between our organization, data subjects, and regulatory authorities, fostering a culture of privacy and trust. You will develop and implement data protection policies, conduct risk assessments, and ensure that all data processing activities comply with legal and ethical standards. This role is ideal for a detail-oriented professional with a passion for data privacy, compliance, and cybersecurity, who thrives in a dynamic and collaborative environment.
At ACLC College, we value innovation, integrity, and continuous learning. As our DPO, you will have the opportunity to shape our data privacy strategy, work with cross-functional teams, and contribute to our mission of providing secure and ethical educational services. If you are a proactive problem-solver with a strong understanding of data protection laws and a commitment to safeguarding personal information, we invite you to apply and grow with us.
Why Join Us?
- Remote Work Flexibility: Enjoy the freedom to work from Baliās most desirable locations, including Canggu, Ubud, or Denpasar.
- Impactful Role: Lead data privacy initiatives that protect our students, staff, and stakeholders.
- Professional Growth: Access to training and development opportunities in data protection and compliance.
- Collaborative Culture: Work with a supportive team dedicated to excellence in education and innovation.
Responsibility
- Develop, implement, and maintain the organizationās data protection policies and procedures in compliance with the Data Privacy Act of 2012 and other relevant regulations.
- Act as the primary point of contact for data subjects, regulatory authorities, and internal stakeholders on all matters related to data privacy.
- Conduct regular Data Protection Impact Assessments (DPIAs) to identify and mitigate risks associated with data processing activities.
- Monitor compliance with data protection laws and internal policies, including conducting audits and providing recommendations for improvement.
- Provide training and awareness programs to employees on data privacy best practices and regulatory requirements.
- Investigate and respond to data breaches, ensuring timely reporting and remediation in accordance with legal obligations.
- Collaborate with IT, legal, and other departments to ensure that data protection measures are integrated into all business processes.
- Maintain records of data processing activities and ensure transparency with data subjects regarding their rights.
Qualifications
- A bachelorās degree in Law, Information Technology, Cybersecurity, or a related field. A masterās degree or professional certification (e.g., CIPP/E, CIPM, CDPSE) is a plus.
- Minimum of 3-5 years of experience in data privacy, compliance, or a related role, preferably in the education or IT sector.
- In-depth knowledge of the Data Privacy Act of 2012 (Republic Act No. 10173) and other global data protection regulations (e.g., GDPR).
- Strong understanding of data protection principles, risk assessment methodologies, and cybersecurity best practices.
- Excellent communication and interpersonal skills, with the ability to explain complex legal and technical concepts to non-experts.
- Proven ability to lead cross-functional teams and drive compliance initiatives in a remote or hybrid work environment.
- Experience conducting DPIAs, audits, and training programs related to data privacy.
- High level of integrity, ethical judgment, and commitment to protecting personal data.