Job Description
Principal Accountabilities and Responsibilities (e.g., for Business, Customers and Stakeholders; internal control environment, etc.) The jobholder: Support the DPDPA Implementation across entities in India; Responsible for analysing, reviewing, and ensuring satisfactory/timely resolution for issues arising from breaches and customer complaints, and is expected to liaise directly with the Regulator's office when necessary; Responsible for identifying those breaches that require escalation within HSBC in the first instance to the Senior Manager, Breaches; Identify/implement procedural changes where relevant.Template version: March 2020 ( when complete); Operate within the statutory timescales for GDPR breach notification, to certify regulatory timescales are met; Consult with Group Legal to determine legal interpretation of laws when required; Responsible for ensuring the fair treatment of our customers is at the heart of everything we do, both personally and as an organisation; Continually reassess the operational risks associated with the role and inherent in the business, taking account of ... changing economic or market conditions, legal and regulatory requirements, operating procedures and practices, management restructurings, and the impact of new technology; Observe and demonstrate observance to internal controls. This will be achieved by observing all relevant procedures, keeping appropriate records and, where appropriate, by the timely implementation of internal and external audit points, including issues raised by external regulators; Observe all relevant processes/procedures and by liaising with Compliance department about new business initiatives at the earliest opportunity. Also, and when applicable, by ensuring adequate resources are in place and training is provided, fostering a compliance culture, and optimizing relations with regulators. Leadership and Teamwork; Act as Team capability lead for offshore team; Manage the Team providing support to the DPOs in monitoring internal compliance by informing and advising on its Data Protection obligations including acting as a contact for data subjects referrals; Provide Second Line support to the Rights of Individuals process including the oversight of complex customer and staff requests for information (subject access) and other Rights, monitoring ROI breaches to ensure legal deadlines are adhered to and appropriate responses provided; Work with the DPOs to prepare DPO Risk and Board reports as required; Coordinate with HSBC's Group-wide Data Privacy Officer ("DPO") teams operating across multiple jurisdictions. This includes building a strong network across the HSBC Group, supporting Local DPOs in fulfilling their duties; Maintain team records and should constantly look to improve how the team and wider department guides, monitors, and assesses, including proactively considering and identifying areas of the business which may require more training to help improve general data privacy understanding; Maintain a good relationship and promote a positive attitude to compliance when dealing with the Regulator staff. Functional Knowledge; Expertise of Data Privacy Laws and the ability to provide practical guidance preferably with exposure to DPDPA; Basic understanding of associated legislation which may have impact on the guidance; Knowledge of the Banking products and services offered. Others; Proven ability in Regulatory Complaints handling and investigations; Proven experience in the investigation of and advising on data privacy breaches; Providing practical and cost-effective solutions; Broad Business Awareness; Banking experience (useful/not essential); Good communication and interpersonal skills; Planning and organizing skills; Analytical skills; Problem solving skills
